TY - GEN
T1 - Configuring storage-area networks for mandatory security
AU - Aziz, Benjamin
AU - Foley, Simon N.
AU - Herbert, John
AU - Swart, Garret
PY - 2004/1/1
Y1 - 2004/1/1
N2 - Storage-area networks are a popular and efficient way of building large storage systems both in an enterprise environment and for multi-domain storage service providers. In both environments the network and the storage has to be configured to ensure that the data is maintained securely and can be delivered efficiently. In this paper we describe a model of mandatory security for multi-domain storage services that is flexible enough to reflect the data requirements, tractable for the administrator, and implementable as part of an automatic configuration system. We describe the model abstractly, its implementation as part of a prototype SAN configuration system written in OPL, and illustrate its operation on a set of sample configurations.
AB - Storage-area networks are a popular and efficient way of building large storage systems both in an enterprise environment and for multi-domain storage service providers. In both environments the network and the storage has to be configured to ensure that the data is maintained securely and can be delivered efficiently. In this paper we describe a model of mandatory security for multi-domain storage services that is flexible enough to reflect the data requirements, tractable for the administrator, and implementable as part of an automatic configuration system. We describe the model abstractly, its implementation as part of a prototype SAN configuration system written in OPL, and illustrate its operation on a set of sample configurations.
UR - http://www.scopus.com/inward/record.url?scp=26444581576&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:26444581576
SN - 1402081278
SN - 9781402081279
T3 - IFIP Advances in Information and Communication Technology
SP - 357
EP - 370
BT - Research Directions in Data and Applications Security XVIII - IFIP TC11/WG11.3 18th Annual Conference on Data and Applications Security
PB - Springer New York LLC
T2 - IFIP TC11/WG11.3 18th Annual Conference on Data and Applications Security
Y2 - 25 July 2004 through 28 July 2004
ER -