Abstract
Security policy system defines the basic rules and strategies for information security systems, e.g., IPsec, IKE, and Firewalls. But due to the heterogeneous network security systems and the corresponding applications of security policy system, it is difficult to build up a unified policy database and deploy it efficiently. In this paper, we propose a unified security policy database schema to be applied to IPsec system and a synchronous methodology of security policy deployment with controlling network schedule. By these, we can guarantee more efficient security services in the policy-based distributed network.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Zao J, Sanchez L, Condell M, Lynn C, Fredette M, Helinek P, Krishnan P, Jackson A, Mankins D, Shepard M, Kent S, „Domain Basd Internet Security Policy Management“, Proceedings DARPA Information Survivability Conference and Exposition, DISCEX’00, IEEE Comput, Soc, Part vol. 1, 1999, pp. 41–53 vol.1, Las Alamitos, CA, USA.
Young-Ju Lee, Nam-Kyung Um, Ji-In Lee, Sang-Ho Lee, Geon-Woo Kim, „Design of A Working Mechanism for Hierachical Security Policy“, Proceedings of The 12’th KISS Fall Conference, vol. 1, 2000, pp. 36–40, Taejon, KOREA.
Baltatu M, Lioy A, Mazzicchi D, „Security policy system: status and perspective“ Proceedings IEEE International Conference on Networks 2000 (ICON 2000), Networking Trends and Challenges in the New Millennium. IEEE Comput, Soc, 2000, pp. 278–284, Los Alamitos, CA, USA.
L.A. Sanchez, M.N. Condell, „Security Policy System“, Internet Draft, Network Working Group, IETF, November 18, 1998.
L.A. Sanchez, M.N. Condell, „Security Policy Protocol“, Internet Draft, Network Working Group, IETF, July 17, 2000.
S. Kent, R. Atkinson, „Security Architecture for the Internet Protocol“, RFC2401, Network Working Group, IETF, November 1998.
S. Kent, R. Atkinson, „IP Authentication Header“, 1, Network Working Group, IETF, November, 1998.
C. Madson, R. Glenn, „The Uses of HMAC-SHA-1 within ESP and AH“, RFC2404, Network Working Group, IETF, November, 1998.
C. Madson, N. Dorawamy, „The ESP DES-CBC Cipher Algorithm with Explicit IV“, RFC2405, Network Working Group, IETF, November, 1998.
S. Kent, R. Atkinson, „IP Encapsulating Payload“, RFC2406, Network Working Group, IETF, November, 1998.
D. Harkins, D. Carrel, „Internet Key Exchange“, RFC2409, Network Working Group, IETF, November, 1998.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Kim, G.W., Park, S.H., Nah, J.H., Sohn, S.W. (2002). Security Policy Deployment in IPsec. In: Chong, I. (eds) Information Networking: Wireless Communications Technologies and Network Applications. ICOIN 2002. Lecture Notes in Computer Science, vol 2344. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45801-8_44
Download citation
DOI: https://doi.org/10.1007/3-540-45801-8_44
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-44255-4
Online ISBN: 978-3-540-45801-2
eBook Packages: Springer Book Archive