{"title":"Human-centric network security management: a comprehensive helper","authors":"G. K. Mostéfaoui, P. Brézillon","doi":"10.1145/1161023.1161031","DOIUrl":null,"url":null,"abstract":"In most current systems, managing access to networks rely on static rules implemented on firewalls and IDS (Intrusion Detection Systems). These measures lack a systematic consideration of the context within which an attack occurs. Indeed, we argue that network access management must be enforced by identifying the sensible contexts in which the hacker tries to drive the system to, before performing the potential dangerous action. Thus, our claim concerns a human-centered management of security as opposed to computing-centered security. In this direction, we propose a visual model that allows expressing sensible contexts for blocking hackers when they enter such sensible contexts. This surveillance operation could be lead by a human or a system. Additionally, our solution allows interlocked processes of incremental acquisition of knowledge and learning of new practices that enriches the initial security policy with new security contexts.","PeriodicalId":441921,"journal":{"name":"Wireless Mobile Applications and Services on WLAN Hotspots","volume":"24 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-09-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Wireless Mobile Applications and Services on WLAN Hotspots","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1161023.1161031","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
Abstract
In most current systems, managing access to networks rely on static rules implemented on firewalls and IDS (Intrusion Detection Systems). These measures lack a systematic consideration of the context within which an attack occurs. Indeed, we argue that network access management must be enforced by identifying the sensible contexts in which the hacker tries to drive the system to, before performing the potential dangerous action. Thus, our claim concerns a human-centered management of security as opposed to computing-centered security. In this direction, we propose a visual model that allows expressing sensible contexts for blocking hackers when they enter such sensible contexts. This surveillance operation could be lead by a human or a system. Additionally, our solution allows interlocked processes of incremental acquisition of knowledge and learning of new practices that enriches the initial security policy with new security contexts.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
