TY - GEN
T1 - A computer network defense policy refinement method
AU - Wei, Zhao
AU - Lv, Yanli
AU - Xia, Chunhe
AU - Luo, Yang
AU - Wei, Qing
PY - 2013
Y1 - 2013
N2 - The existing methods of policy refinement in computer network defense (CND) can only support the refinement of access control policy, but not the policies of protection, detection, response, and recovery. To solve this problem, we constructed a computer network defense policy refinement model and its formalism specification. An algorithm of defense policy refinement is designed. At last, the effectiveness of our methods was verified through one experiment cases of the composition policies with intrusion detection, vulnerabilities detection, and access control.
AB - The existing methods of policy refinement in computer network defense (CND) can only support the refinement of access control policy, but not the policies of protection, detection, response, and recovery. To solve this problem, we constructed a computer network defense policy refinement model and its formalism specification. An algorithm of defense policy refinement is designed. At last, the effectiveness of our methods was verified through one experiment cases of the composition policies with intrusion detection, vulnerabilities detection, and access control.
KW - Computer network defense
KW - Formalism specifications
KW - Policy refinement
KW - Semantic consistency
UR - https://www.scopus.com/pages/publications/84901485997
U2 - 10.1007/978-3-642-53959-6_12
DO - 10.1007/978-3-642-53959-6_12
M3 - 会议稿件
AN - SCOPUS:84901485997
SN - 9783642539589
T3 - Communications in Computer and Information Science
SP - 122
EP - 133
BT - Frontiers in Internet Technologies - Second CCF Internet Conference of China, ICoC 2013, Revised Selected Papers
PB - Springer Verlag
T2 - 2nd CCF Internet Conference of China, ICoC 2013
Y2 - 10 July 2013 through 10 July 2013
ER -