Please use this identifier to cite or link to this item: https://hdl.handle.net/11147/10069
Full metadata record
DC FieldValueLanguage
dc.contributor.authorTuğlular, Tuğkan-
dc.date.accessioned2021-01-24T18:32:10Z-
dc.date.available2021-01-24T18:32:10Z-
dc.date.issued2008-
dc.identifier.isbn978-960-6766-64-0-
dc.identifier.urihttps://hdl.handle.net/11147/10069-
dc.description7th WSEAS International Conference on TELECOMMUNICATIONS and INFORMATICSen_US
dc.description.abstractMultiple interconnected network segments distributed across various locations, such as corporate networks, where users or employees constantly travel among segments and require to access servers, need to have network access control mechanisms that are able to adapt to these location changes. The idea of a firewall changing or adapting its rules depending on the location of users is presented by an architecture in this paper. This architecture proposes deployment of a policy server at the management level and policy agents at the firewall level, so that policy-driven network security management is enabled by specifying location aware user based network access control policies at the network security management and enforcing them at the managed firewalls. The architecture presented in this paper utilizes user VPN connection event triggers for dynamic policy configuration and automated policy deployment to firewalls. Location aware user based network access control policies, which are management level policies, are implemented using XACML. A network level policy is usually a configuration, or policy, file local to the firewall. The policy agent incorporated into the firewall performs the mapping from management level policy to firewall policy.en_US
dc.description.sponsorshipWSEASen_US
dc.language.isoenen_US
dc.publisherWorld Scientific and Engineering Academy and Societyen_US
dc.relation.ispartofNew Aspects of Telecommunications and Informaticsen_US
dc.relation.ispartofseriesElectrical and Computer Engineering-
dc.rightsinfo:eu-repo/semantics/openAccessen_US
dc.subjectAccess controlen_US
dc.subjectNetwork securityen_US
dc.subjectFirewallsen_US
dc.subjectLocation awarenessen_US
dc.subjectXACMLen_US
dc.titleAutomatic enforcement of location aware user based network access control policiesen_US
dc.typeConference Objecten_US
dc.institutionauthorTuğlular, Tuğkan-
dc.departmentİzmir Institute of Technology. Computer Engineeringen_US
dc.identifier.startpage49en_US
dc.identifier.endpage54en_US
dc.identifier.wosWOS:000257883600007en_US
dc.relation.publicationcategoryMakale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanıen_US
dc.identifier.wosqualityN/A-
dc.identifier.scopusqualityN/A-
item.fulltextWith Fulltext-
item.grantfulltextopen-
item.languageiso639-1en-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.cerifentitytypePublications-
item.openairetypeConference Object-
crisitem.author.dept03.04. Department of Computer Engineering-
Appears in Collections:Computer Engineering / Bilgisayar Mühendisliği
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection
Files in This Item:
File SizeFormat 
Automatic_enforcement.pdf429.59 kBAdobe PDFView/Open
Show simple item record



CORE Recommender

WEB OF SCIENCETM
Citations

1
checked on Nov 9, 2024

Page view(s)

226
checked on Nov 18, 2024

Download(s)

146
checked on Nov 18, 2024

Google ScholarTM

Check




Altmetric


Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.