High-Granular Micro-Segmentation in Campus Networks based on Downloadable Access Control Lists

Micro-segmentation of local networks is an important element of network security. The main goal of micro-segmentation of network is to reduce a risk of compromising hosts during a cyber-attack. In micro-segmented networks, if one of the hosts has been compromised, the malicious code or attacker will be limited in the "horizontal" actions by the micro-segment to which the compromised host belongs. Existing methods of micro-segmentation of networks have operational drawbacks that impede their effective practical application. This article presents a new method of micro-segmentation of local wired and wireless networks based on downloadable and wireless access control lists, which allows to achieve a high level of granularity of network access policies by minimizing the microsegment, along with high operational characteristics.

Download Full-text

Integrating Access Policies into the Development Process of Hypermedia Web Systems

Information Security and Ethics ◽

10.4018/978-1-59904-937-3.ch102 ◽

2008 ◽

pp. 1514-1530

Author(s):

Paloma Diaz ◽

Daniel Sanz ◽

Susana Montero ◽

Ignacio Aedo

Keyword(s):

Access Control ◽

Development Process ◽

Control Model ◽

Development Method ◽

Access Control Models ◽

High Level ◽

Access Policies ◽

Whole Life Cycle ◽

Hypermedia Applications ◽

Web Systems

This chapter discusses the integration of access control in the development process of hypermedia applications. Two key ideas are proposed: the use of high level, abstract access control models and the inclusion of access control in the whole life cycle of hypermedia applications. Authors present an access control model for hypermedia that makes it possible to formalize access policies using elements of the hypermedia domain, those used to specify structure and navigation services. Abstract models are not enoughto assist developers in dealing with security in a systematic way. Thus, authors describe how high-level access rules can be specified following the Ariadne Development Method (ADM). The ARCE project is used as example of development.

Download Full-text

Integrating Access Policies into the Development Process of Hypermedia Web Systems

Web and Information Security ◽

10.4018/978-1-59140-588-7.ch008 ◽

2006 ◽

pp. 149-172

Author(s):

Paloma Diaz ◽

Daniel Sanz ◽

Susana Montero

Keyword(s):

Access Control ◽

Development Process ◽

Control Model ◽

Development Method ◽

Access Control Models ◽

High Level ◽

Access Policies ◽

Whole Life Cycle ◽

Hypermedia Applications ◽

Web Systems

Download Full-text

A High-level Authorization Framework for Software-Defined Networks

10.5753/sbrc_estendido.2018.14177 ◽

2018 ◽

Author(s):

Daniel Rosendo ◽

Judith Kelner ◽

Patrícia Endo

Keyword(s):

Access Control ◽

Network Access ◽

Network Resources ◽

Fine Grained ◽

Control Rules ◽

Access Control Policies ◽

Access Control Rules ◽

Network Access Control ◽

Access Control Management ◽

High Level

Enterprise network managers need to control the access to their network resources and protect them from malicious users. Current Network Access Control (NAC) solutions rely on approaches, such as ﬁrewalls, VLAN, ACL, and LDAP that are inﬂexible and require per-device and vendor-speciﬁc conﬁgurations, being error-prone. Besides, misconﬁgurations may result in vulnerabilities that could compromise the overall network security. Managing security policies involve dealing with many access control rules, conﬂicting policies, rule priorities, right delegation, dynamics of the network, etc. This work presents HACFlow, a novel, autonomic, and policy-based framework for access control management in OpenFlow networks. HACFlow simpliﬁes and automates the network management allowing network operators to govern rights of network entities by deﬁning dynamic, ﬁne-grained, and high-level access control policies. We analyzed the performance of HACFlow and compared it against related approaches.

Download Full-text

ATTITUDE TO OPEN ACCESS IN RUSSIAN SCHOLARLY COMMUNITY: 2018. SURVEY RESULTS AND ANALYSIS

Scholarly Research and Information ◽

10.24108/2658-3143-2018-1-1-6-21 ◽

2018 ◽

Vol 1 (1) ◽

pp. 6-21 ◽

Cited By ~ 2

Author(s):

I. K. Razumova ◽

N. N. Litvinova ◽

M. E. Shvartsman ◽

A. Yu. Kuznetsov

Keyword(s):

Open Access ◽

Open Access Publishing ◽

Scholarly Community ◽

Research Areas ◽

Survey Results ◽

The Difference ◽

Policies And Programs ◽

The Uk ◽

High Level ◽

Access Policies

Introduction. The paper presents survey results on the awareness towards and practice of Open Access scholarly publishing among Russian academics.Materials and Methods. We employed methods of statistical analysis of survey results. Materials comprise results of data processing of Russian survey conducted in 2018 and published results of the latest international surveys. The survey comprised 1383 respondents from 182 organizations. We performed comparative studies of the responses from academics and research institutions as well as different research areas. The study compares results obtained in Russia with the recently published results of surveys conducted in the United Kingdom and Europe.Results. Our findings show that 95% of Russian respondents support open access, 94% agree to post their publications in open repositories and 75% have experience in open access publishing. We did not find any difference in the awareness and attitude towards open access among seven reference groups. Our analysis revealed the difference in the structure of open access publications of the authors from universities and research institutes. Discussion andConclusions. Results reveal a high level of awareness and support to open access and succeful practice in the open access publications in the Russian scholarly community. The results for Russia demonstrate close similarity with the results of the UK academics. The governmental open access policies and programs would foster the practical realization of the open access in Russia.

Download Full-text