Configuring storage-area networks using mandatory security
| Autor: | Benjamin Aziz, Garret Swart, Simon N. Foley, John Herbert |
|---|---|
| Rok vydání: | 2009 |
| Předmět: |
Computer Networks and Communications
Computer science Configuration Analysis Computing Service provider Information repository Computer security computer.software_genre Configuration analysis Storage area network Formal Validation Methods Hardware and Architecture Robustness (computer science) Converged storage Security Storage-Area Networks Configuration system Safety Risk Reliability and Quality computer Software |
| Zdroj: | Aziz, B, Foley, S, Herbert, J & Swart, G 2009, ' Configuring storage-area networks using mandatory security ', Journal of Computer Security, vol. 17, no. 2, pp. 191-210 . https://doi.org/10.3233/JCS-2009-0337 |
| ISSN: | 1875-8924 0926-227X |
| DOI: | 10.3233/jcs-2009-0337 |
| Popis: | Storage-area networks are a popular and efficient way of building large storage systems both in an enterprise environment and for multi-domain storage service providers. In both environments the network and the storage has to be configured to ensure that the data is maintained securely and can be delivered efficiently. In this paper, we describe a model of mandatory security for SAN services that incorporates the notion of risk as a measure of the robustness of the SAN's configuration and that formally defines a vulnerability common in systems with mandatory security, i.e. cascaded threats. Our abstract SAN model is flexible enough to reflect the data requirements, tractable for the administrator, and can be implemented as part of an automatic configuration system. The implementation is given as part of a prototype written in OPL. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|