A Study of SLA-Based Defense Resource Management Strategy in Network Security Defense System - Network and Parallel Computing
Conference Papers Year : 2012

A Study of SLA-Based Defense Resource Management Strategy in Network Security Defense System

Wen-Hsu Hsiao
  • Function : Author
  • PersonId : 1011296
Hui-Kai Su
  • Function : Author
  • PersonId : 1011237
Kim-Joan Chen
  • Function : Author
  • PersonId : 1011297

Abstract

This paper mainly propose a service of network security defense provide by the network service provider, and the service system is built on the original ISP network structure, the security decisions center build on the ISP’s core network which is making the policy decisions of security event, and built a defense system on border routers to form a secure domain called security domain, the service provider will join the user who is using the service to the security domain, through the defense system to network traffic monitoring and filtering malice package to provide users of network security threat defense services. Using Service Level Agreements (SLA) to represent users’ needs, so that users can choose services according to their needs, network security defense system provide different type of defense services based on user needs. Finally, we analyze the usage of the defense resource, furthermore we formulate the mechanisms of policy for the client’s needs, and how to allocate resources in the case of resource saturation for the defense to satisfy service providers obtain the best benefits of the service strategy, and design the mechanism of resource management.
Fichier principal
Vignette du fichier
978-3-642-35606-3_40_Chapter.pdf (501.16 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01551361 , version 1 (30-06-2017)

Licence

Identifiers

Cite

Wen-Hsu Hsiao, Hui-Kai Su, Yu-Siang Wei, Wei-Sheng Ho, Kim-Joan Chen. A Study of SLA-Based Defense Resource Management Strategy in Network Security Defense System. 9th International Conference on Network and Parallel Computing (NPC), Sep 2012, Gwangju, South Korea. pp.336-348, ⟨10.1007/978-3-642-35606-3_40⟩. ⟨hal-01551361⟩
83 View
59 Download

Altmetric

Share

More