Assessment of security extended XML-based Management

The emergence of new management paradigms having XML as a core foundation block demands a comprehensive analysis of their security and performance issues. This paper presents an extension to the existing NetConf protocol. This extension consists of a security architecture and some advanced XML specific features. We describe a series of experiments addressing the performance and operational aspects of our developed implementation and provide grounded answers to issues of significant relevancy to the research community.

[1]  Radu State,et al.  A NetConf Network Management Suite: ENSUITE , 2005, IPOM.

[2]  Alessandro Corrente,et al.  Security performance analysis of SNMPv3 with respect to SNMPv2c , 2004, 2004 IEEE/IFIP Network Operations and Management Symposium (IEEE Cat. No.04CH37507).

[3]  Rob Enns,et al.  NETCONF Configuration Protocol , 2006, RFC.

[4]  Yakov Rekhter,et al.  A Border Gateway Protocol 4 (BGP-4) , 1994, RFC.

[5]  Torsten Klie,et al.  Towards XML Oriented Internet Management , 2003, Integrated Network Management.

[6]  Jean-Philippe Martin-Flatin,et al.  Bulk Transfers of MIB Data , 1999 .

[7]  Qiang Gu,et al.  Network management performance analysis and scalability tests: SNMP vs. CORBA , 2004, 2004 IEEE/IFIP Network Operations and Management Symposium (IEEE Cat. No.04CH37507).

[8]  Tatu Ylonen,et al.  SSH Transport Layer Protocol , 1996 .

[9]  Emil C. Lupu,et al.  Use of roles and policies for specifying and managing a virtual enterprise , 1999, Proceedings Ninth International Workshop on Research Issues on Data Engineering: Information Technology for Virtual Enterprises. RIDE-VE'99.

[10]  Emil C. Lupu,et al.  Reconciling role based management and role based access control , 1997, RBAC '97.

[11]  D. Eastlake,et al.  XML Encryption Syntax and Processing , 2003 .

[12]  Mark Bartel,et al.  Xml-Signature Syntax and Processing , 2000 .

[13]  Radu State,et al.  An integrated security framework for XML based management , 2005, 2005 9th IFIP/IEEE International Symposium on Integrated Network Management, 2005. IM 2005..

[14]  Emil C. Lupu,et al.  A role based framework for distributed systems management , 1998 .

[15]  James Won-Ki Hong,et al.  Interaction Translation Methods for XML/SNMP Gateway , 2002, DSOM.

[16]  Lisandro Zambenedetti Granville,et al.  Implementation and bandwidth consumption evaluation of SNMP to Web services gateways , 2004, 2004 IEEE/IFIP Network Operations and Management Symposium (IEEE Cat. No.04CH37507).

[17]  George C. Sackett The Cisco Router Handbook , 1999 .