Automatic enforcement of location aware user based network access control policies
| dc.author.wosid | Tuglular, Tugkan/AAI-8008-2020 | |
| dc.authorid | Tuglular, Tugkan/0000-0001-6797-3913 | |
| dc.contributor.author | Tuglular, Tugkan | |
| dc.contributor.author | Tuğlular, Tuğkan | |
| dc.contributor.other | Bilgisayar Mühendisliği Bölümü | |
| dc.date.accessioned | 2023-10-30T08:06:53Z | |
| dc.date.available | 2023-10-30T08:06:53Z | |
| dc.date.issued | 2008 | |
| dc.department | Izmir Institute of Technology İYTE | en_US |
| dc.department-temp | Izmir Inst Technol, Dept Comp Engn, Izmir, Turkey | en_US |
| dc.description | Tuglular, Tugkan/0000-0001-6797-3913 | en_US |
| dc.description.abstract | Multiple interconnected network segments distributed across various locations, such as corporate networks, where users or employees constantly travel among segments and require to access servers, need to have network access control mechanisms that are able to adapt to these location changes. The idea of a firewall changing or adapting its rules depending on the location of users is presented by an architecture in this paper. This architecture proposes deployment of a policy server at the management level and policy agents at the firewall level, so that policy-driven network security management is enabled by specifying location aware user based network access control policies at the network security management and enforcing them at the managed firewalls. The architecture presented in this paper utilizes user VPN connection event triggers for dynamic policy configuration and automated policy deployment to firewalls. Location aware user based network access control policies, which are management level policies, are implemented using XACML. A network level policy is usually a configuration, or policy, file local to the firewall. The policy agent incorporated into the firewall performs the mapping from management level policy to firewall policy. | en_US |
| dc.identifier.citation | 1 | |
| dc.identifier.doi | [WOS-DOI-BELIRLENECEK-5] | |
| dc.identifier.endpage | 54 | en_US |
| dc.identifier.isbn | 9789606766640 | |
| dc.identifier.startpage | 49 | en_US |
| dc.identifier.uri | http://65.108.157.135:4000/handle/123456789/34 | |
| dc.identifier.wos | WOS:000257883600007 | |
| dc.institutionauthor | Tuglular, Tugkan | |
| dc.language.iso | en | en_US |
| dc.opencitations.citationcount | 0 | |
| dc.publisher | World Scientific and Engineering Acad and Soc | en_US |
| dc.relation.ispartof | 7th WSEAS International Conference on TELECOMMUNICATIONS and INFORMATICS -- MAY 27-30, 2008 -- Istanbul, TURKEY | en_US |
| dc.relation.ispartofseries | ELECTRICAL AND COMPUTER ENGINEERING | |
| dc.relation.publicationcategory | Konferans Öğesi - Uluslararası - Kurum Öğretim Elemanı | en_US |
| dc.rights | info:eu-repo/semantics/closedAccess | en_US |
| dc.sobiad.citationcount | 0 | |
| dc.subject | access control | en_US |
| dc.subject | network security policies | en_US |
| dc.subject | firewalls | en_US |
| dc.subject | location awareness | en_US |
| dc.subject | XACML | en_US |
| dc.subject | firewall policy agents | en_US |
| dc.title | Automatic enforcement of location aware user based network access control policies | en_US |
| dc.type | Conference Object | en_US |
| dc.wos.citedbyCount | 1 | |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | 16066bf2-f189-4d4b-91e8-3fc6cb495163 | |
| relation.isAuthorOfPublication.latestForDiscovery | 16066bf2-f189-4d4b-91e8-3fc6cb495163 | |
| relation.isOrgUnitOfPublication | c6842224-7566-492d-b2b4-2d51b18ef9e3 | |
| relation.isOrgUnitOfPublication.latestForDiscovery | c6842224-7566-492d-b2b4-2d51b18ef9e3 |