Configuring storage-area networks for mandatory security

Benjamin Aziz, Simon N. Foley, John Herbert, Garret Swart

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Storage-area networks are a popular and efficient way of building large storage systems both in an enterprise environment and for multi-domain storage service providers. In both environments the network and the storage has to be configured to ensure that the data is maintained securely and can be delivered efficiently. In this paper we describe a model of mandatory security for multi-domain storage services that is flexible enough to reflect the data requirements, tractable for the administrator, and implementable as part of an automatic configuration system. We describe the model abstractly, its implementation as part of a prototype SAN configuration system written in OPL, and illustrate its operation on a set of sample configurations.

Original languageEnglish
Title of host publicationResearch Directions in Data and Applications Security XVIII - IFIP TC11/WG11.3 18th Annual Conference on Data and Applications Security
PublisherSpringer New York LLC
Pages357-370
Number of pages14
ISBN (Print)1402081278, 9781402081279
Publication statusPublished - 1 Jan 2004
EventIFIP TC11/WG11.3 18th Annual Conference on Data and Applications Security - Sitges, Catalonia, Spain
Duration: 25 Jul 200428 Jul 2004

Publication series

NameIFIP Advances in Information and Communication Technology
Volume144
ISSN (Print)1868-4238

Conference

ConferenceIFIP TC11/WG11.3 18th Annual Conference on Data and Applications Security
Country/TerritorySpain
CitySitges, Catalonia
Period25/07/0428/07/04

Fingerprint

Dive into the research topics of 'Configuring storage-area networks for mandatory security'. Together they form a unique fingerprint.

Cite this