Multi-agents system service based platform in telecommunication security incident reaction
B. Gâteau, D. Khadraoui, and C. Feltus. Proceedings of the Second international conference on Global Information Infrastructure Symposium, page 63--68. Piscataway, NJ, USA, IEEE Press, (2009)
Abstract
The main focus of this paper is to provide a global architectural solution built on the requirements for a reaction after alert detection mechanisms in the frame of Information Systems Security and more particularly applied to telecom infrastructures security. These infrastructures are distributed in nature, therefore the targeted architecture is developed in a distributed perspective and is composed of three basic layers: low level, intermediate level and high level. The low level is dedicated to be the interface between the main architecture and the targeted infrastructure. The intermediate level is responsible of correlating the alerts coming from different domains of the infrastructure and to deploy smartly the reaction actions. This intermediate level is elaborated using multi-agents system that provide the advantages of autonomous and interaction facilities. The high level permits to have a supervision view of the whole infrastructure, and to manage business policy definition. The proposed approach has been successfully experimented for data access control mechanism.
%0 Conference Paper
%1 Gateau:2009:MSS:1719570.1719580
%A Gâteau, Benjamin
%A Khadraoui, Djamel
%A Feltus, Christophe
%B Proceedings of the Second international conference on Global Information Infrastructure Symposium
%C Piscataway, NJ, USA
%D 2009
%I IEEE Press
%K architecture, distributed multi-agents networks, policy security systems,
%P 63--68
%T Multi-agents system service based platform in telecommunication security incident reaction
%U http://dl.acm.org/citation.cfm?id=1719570.1719580
%X The main focus of this paper is to provide a global architectural solution built on the requirements for a reaction after alert detection mechanisms in the frame of Information Systems Security and more particularly applied to telecom infrastructures security. These infrastructures are distributed in nature, therefore the targeted architecture is developed in a distributed perspective and is composed of three basic layers: low level, intermediate level and high level. The low level is dedicated to be the interface between the main architecture and the targeted infrastructure. The intermediate level is responsible of correlating the alerts coming from different domains of the infrastructure and to deploy smartly the reaction actions. This intermediate level is elaborated using multi-agents system that provide the advantages of autonomous and interaction facilities. The high level permits to have a supervision view of the whole infrastructure, and to manage business policy definition. The proposed approach has been successfully experimented for data access control mechanism.
%@ 978-1-4244-4623-0
@inproceedings{Gateau:2009:MSS:1719570.1719580,
abstract = {The main focus of this paper is to provide a global architectural solution built on the requirements for a reaction after alert detection mechanisms in the frame of Information Systems Security and more particularly applied to telecom infrastructures security. These infrastructures are distributed in nature, therefore the targeted architecture is developed in a distributed perspective and is composed of three basic layers: low level, intermediate level and high level. The low level is dedicated to be the interface between the main architecture and the targeted infrastructure. The intermediate level is responsible of correlating the alerts coming from different domains of the infrastructure and to deploy smartly the reaction actions. This intermediate level is elaborated using multi-agents system that provide the advantages of autonomous and interaction facilities. The high level permits to have a supervision view of the whole infrastructure, and to manage business policy definition. The proposed approach has been successfully experimented for data access control mechanism.},
acmid = {1719580},
added-at = {2012-11-16T15:24:48.000+0100},
address = {Piscataway, NJ, USA},
author = {G\^{a}teau, Benjamin and Khadraoui, Djamel and Feltus, Christophe},
biburl = {https://www.bibsonomy.org/bibtex/202950363fae141194f2d706245f6bde5/christophe.feltus@tudor.lu},
booktitle = {Proceedings of the Second international conference on Global Information Infrastructure Symposium},
interhash = {9f7fe319ba3fec1a275e7e4bfa5aed71},
intrahash = {02950363fae141194f2d706245f6bde5},
isbn = {978-1-4244-4623-0},
keywords = {architecture, distributed multi-agents networks, policy security systems,},
location = {Hammamet, Tunisia},
numpages = {6},
pages = {63--68},
publisher = {IEEE Press},
series = {GIIS'09},
timestamp = {2012-11-16T15:24:50.000+0100},
title = {Multi-agents system service based platform in telecommunication security incident reaction},
url = {http://dl.acm.org/citation.cfm?id=1719570.1719580},
year = 2009
}