Abstract
Storage-area networks are a popular and efficient way of building large storage systems both in an enterprise environment and for multi-domain storage service providers. In both environments the network and the storage has to be configured to ensure that the data is maintained securely and can be delivered efficiently. In this paper, we describe a model of mandatory security for SAN services that incorporates the notion of risk as a measure of the robustness of the SAN’s configuration and that formally defines a vulnerability common in systems with mandatory security, i.e. cascaded threats. Our abstract SAN model is flexible enough to reflect the data requirements, tractable for the administrator, and can be implemented as part of an automatic configuration system. The implementation is given as part of a prototype written in OPL.
Original language | English |
---|---|
Pages (from-to) | 191-210 |
Number of pages | 20 |
Journal | Journal of Computer Security |
Volume | 17 |
Issue number | 2 |
DOIs | |
Publication status | Published - 24 Mar 2009 |
Keywords
- Storage-Area Networks
- Formal Validation Methods
- Security
- Configuration Analysis