论文信息 - A Dynamic and Self-Adaptive Network Security Policy Realization Mechanism

A Dynamic and Self-Adaptive Network Security Policy Realization Mechanism

Using high-level security policy rules to regulate low-level system, the security management system with a high level of expansibility and flexibility was made. For purpose of managing network security policy duly and flexibly in the complex network environment, and resolving its issue efficiency, a dynamic and self-adaptive security policy realization mechanism is proposed. The accident monitor and policy life-cycle are put forward, and the impact of safety equipment or user requests, such as system resources found on the flow control can be calculated automatically. The system can independently carry out a dynamic, flexible and real-time to adjust and control in the network environment and security needs change. The distribution model is given to response policy request rapidly, take the appropriate policy dissemination methods, and reduce PDP computing tasks, system resource consumption, which introduces the concepts of issue affecting factors, security domain addresses allocation, etc. Expression and making ways of the structure-dissimilarity policy faced on attribute characters and operation are analyzed emphatically. The effectiveness of the proposed model and algorithms is proved by experiments.

Shunzheng Yu | Chenghua Tang

[1] Ka Lun Eddie Law,et al. Scalable design of a policy-based management system and its performance , 2003, IEEE Commun. Mag..

[2] Alex Galis,et al. A policy-based management architecture for active and programmable networks , 2003, IEEE Netw..

[3] R. Alhajj,et al. Performance analysis of incremental update of association rules mining approaches , 2005, 2005 IEEE International Conference on Intelligent Engineering Systems, 2005. INES '05..

[4] Chenghua Tang,et al. A Network Security Policy Model and Its Realization Mechanism , 2006, Inscrypt.

[5] Yang Ming,et al. Fast Updating of Globally Frequent Itemsets , 2004 .

[6] Li Zhou-Jun,et al. Efficiently Mining of Maximal Frequent Item Sets Based on FP-Tree , 2005 .

[7] Azzedine Boukerche,et al. An enhancement towards dynamic grid-based DDM protocol for distributed simulation using multiple levels of data filtering , 2006, Parallel Comput..

[8] J. Pei,et al. Sequential Pattern Mining by Pattern-Growth : Principles and Extensions , 2005 .

[9] Jorge Lobo,et al. Policy-based management of networked computing systems , 2005, IEEE Communications Magazine.

[10] Joan Serrat,et al. A Policy-Based Management Architecture for Flexible Service Deployment in Active Networks , 2003, IWAN.

[11] Rongrong Ji,et al. DRM: dynamic region matching for image retrieval using probabilistic fuzzy matching and boosting feature selection , 2008, Signal Image Video Process..