PORTO @ Archivio Istituzionale della Ricerca

The configuration and management of security controls and applications is complex and not well understood by the majority of end-users (i.e. it typically requires specific skills). The security policy language simplifies this task and reduces the number of errors and anomalies. This paper proposes the specification of the two mechanisms for defining user’s security policies, namely High-level Security Policy Language (HSPL) and Medium-level Security Policy Language (MSPL). HSPL is suitable for expressing the protection requirements of typical non-technical users, while MSPL is a lower-levelabstraction useful for expressing specific configurations of security controls in a generic format (as such it is more appealing for technical users).

User-oriented Network Security Policy Specification / Valenza, Fulvio; Lioy, Antonio. - In: JOURNAL OF INTERNET SERVICES AND INFORMATION SECURITY. - ISSN 2182-2069. - STAMPA. - 8:2(2018), pp. 33-47. [10.22667/JISIS.2018.05.31.033]

User-oriented Network Security Policy Specification

Fulvio Valenza;Antonio Lioy
2018

Abstract

The configuration and management of security controls and applications is complex and not well understood by the majority of end-users (i.e. it typically requires specific skills). The security policy language simplifies this task and reduces the number of errors and anomalies. This paper proposes the specification of the two mechanisms for defining user’s security policies, namely High-level Security Policy Language (HSPL) and Medium-level Security Policy Language (MSPL). HSPL is suitable for expressing the protection requirements of typical non-technical users, while MSPL is a lower-levelabstraction useful for expressing specific configurations of security controls in a generic format (as such it is more appealing for technical users).
File in questo prodotto:
File Dimensione Formato  
jisis-2018-vol8-no2-03.pdf

accesso aperto

Descrizione: Article (PDF)
Tipologia: 2a Post-print versione editoriale / Version of Record
Licenza: Creative commons
Dimensione 1.15 MB
Formato Adobe PDF
Visualizza/Apri
1.15 MB Adobe PDF Visualizza/Apri
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11583/2724531
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo