Threat-Based Configuration Architecture for Security Gateways

Chin-Fu Kuo; Chi-Ying Chen; Chi-Sheng Shih; Tei-Wei Kuo

doi:10.1109/ICON.2006.302564

Threat-Based Configuration Architecture for Security Gateways

Chin-Fu Kuo, Chi-Ying Chen, Chi-Sheng Shih, Tei-Wei Kuo

Research output: Chapters, Conference Papers, Creative and Literary Works › RGC 32 - Refereed conference paper (with host publication) › peer-review

Abstract

The paper proposed a software architecture for security gateways which allows the product designers or service providers to systematically configure the security software components. Current architecture leads to tremendous administration overhead and increases the chance of misconfiguration vulnerability. We proposed a novel software architecture to aid the product designers to avoid the misconfiguration vulnerability and the end-users to ease the administration overhead. The software architecture makes use the threats for the gateways and the occuranee relation between the threats to configure the security software components on the gateways. With the software architecture, the end-users can focus on determining the desired security features rather than the software configuration. Moreover, the architecture allows the product designers or security service to incrementally revise the software configuration when new threats appear.

Original language	English
Title of host publication	Proceedings - 2006 IEEE International Conference on Networks (ICON 2006)
Subtitle of host publication	Networking-Challenges and Frontiers
Pages	224-229
Volume	1
DOIs	https://doi.org/10.1109/ICON.2006.302564
Publication status	Published - Sept 2006
Externally published	Yes
Event	2006 IEEE International Conference on Networks (ICON 2006): Networking-Challenges and Frontiers - , Singapore Duration: 13 Sept 2006 → 15 Sept 2006

Publication series

Name	Proceedings - IEEE International Conference on Networks, ICON
ISSN (Print)	1556-6463

Conference

Conference	2006 IEEE International Conference on Networks (ICON 2006)
Country/Territory	Singapore
Period	13/09/06 → 15/09/06

Access Output

10.1109/ICON.2006.302564

Other Access Options

Check CityUHK Library

Permanent Link

Right click to copy link

Cite this

Kuo, C.-F., Chen, C.-Y., Shih, C.-S., & Kuo, T.-W. (2006). Threat-Based Configuration Architecture for Security Gateways. In Proceedings - 2006 IEEE International Conference on Networks (ICON 2006) : Networking-Challenges and Frontiers (Vol. 1, pp. 224-229). Article 4087691 (Proceedings - IEEE International Conference on Networks, ICON). https://doi.org/10.1109/ICON.2006.302564

@inproceedings{50de6ee6abf74ab9b24cabe4790ef04b,

title = "Threat-Based Configuration Architecture for Security Gateways",

abstract = "The paper proposed a software architecture for security gateways which allows the product designers or service providers to systematically configure the security software components. Current architecture leads to tremendous administration overhead and increases the chance of misconfiguration vulnerability. We proposed a novel software architecture to aid the product designers to avoid the misconfiguration vulnerability and the end-users to ease the administration overhead. The software architecture makes use the threats for the gateways and the occuranee relation between the threats to configure the security software components on the gateways. With the software architecture, the end-users can focus on determining the desired security features rather than the software configuration. Moreover, the architecture allows the product designers or security service to incrementally revise the software configuration when new threats appear.",

author = "Chin-Fu Kuo and Chi-Ying Chen and Chi-Sheng Shih and Tei-Wei Kuo",

year = "2006",

month = sep,

doi = "10.1109/ICON.2006.302564",

language = "English",

isbn = "0780397460",

volume = "1",

series = "Proceedings - IEEE International Conference on Networks, ICON",

pages = "224--229",

booktitle = "Proceedings - 2006 IEEE International Conference on Networks (ICON 2006)",

note = "2006 IEEE International Conference on Networks (ICON 2006) : Networking-Challenges and Frontiers ; Conference date: 13-09-2006 Through 15-09-2006",

}

Kuo, C-F, Chen, C-Y, Shih, C-S & Kuo, T-W 2006, Threat-Based Configuration Architecture for Security Gateways. in Proceedings - 2006 IEEE International Conference on Networks (ICON 2006) : Networking-Challenges and Frontiers. vol. 1, 4087691, Proceedings - IEEE International Conference on Networks, ICON, pp. 224-229, 2006 IEEE International Conference on Networks (ICON 2006), Singapore, 13/09/06. https://doi.org/10.1109/ICON.2006.302564

Threat-Based Configuration Architecture for Security Gateways. / Kuo, Chin-Fu; Chen, Chi-Ying; Shih, Chi-Sheng et al.
Proceedings - 2006 IEEE International Conference on Networks (ICON 2006) : Networking-Challenges and Frontiers. Vol. 1 2006. p. 224-229 4087691 (Proceedings - IEEE International Conference on Networks, ICON).

Research output: Chapters, Conference Papers, Creative and Literary Works › RGC 32 - Refereed conference paper (with host publication) › peer-review

TY - GEN

T1 - Threat-Based Configuration Architecture for Security Gateways

AU - Kuo, Chin-Fu

AU - Chen, Chi-Ying

AU - Shih, Chi-Sheng

AU - Kuo, Tei-Wei

PY - 2006/9

Y1 - 2006/9

N2 - The paper proposed a software architecture for security gateways which allows the product designers or service providers to systematically configure the security software components. Current architecture leads to tremendous administration overhead and increases the chance of misconfiguration vulnerability. We proposed a novel software architecture to aid the product designers to avoid the misconfiguration vulnerability and the end-users to ease the administration overhead. The software architecture makes use the threats for the gateways and the occuranee relation between the threats to configure the security software components on the gateways. With the software architecture, the end-users can focus on determining the desired security features rather than the software configuration. Moreover, the architecture allows the product designers or security service to incrementally revise the software configuration when new threats appear.

AB - The paper proposed a software architecture for security gateways which allows the product designers or service providers to systematically configure the security software components. Current architecture leads to tremendous administration overhead and increases the chance of misconfiguration vulnerability. We proposed a novel software architecture to aid the product designers to avoid the misconfiguration vulnerability and the end-users to ease the administration overhead. The software architecture makes use the threats for the gateways and the occuranee relation between the threats to configure the security software components on the gateways. With the software architecture, the end-users can focus on determining the desired security features rather than the software configuration. Moreover, the architecture allows the product designers or security service to incrementally revise the software configuration when new threats appear.

UR - http://www.scopus.com/inward/record.url?scp=46449101553&partnerID=8YFLogxK

UR - https://www.scopus.com/record/pubmetrics.uri?eid=2-s2.0-46449101553&origin=recordpage

U2 - 10.1109/ICON.2006.302564

DO - 10.1109/ICON.2006.302564

M3 - RGC 32 - Refereed conference paper (with host publication)

SN - 0780397460

SN - 9780780397460

VL - 1

T3 - Proceedings - IEEE International Conference on Networks, ICON

SP - 224

EP - 229

BT - Proceedings - 2006 IEEE International Conference on Networks (ICON 2006)

T2 - 2006 IEEE International Conference on Networks (ICON 2006)

Y2 - 13 September 2006 through 15 September 2006

ER -

Threat-Based Configuration Architecture for Security Gateways

Abstract

Publication series

Conference

Access Output

Other Access Options

Permanent Link

Other Files and Links

Fingerprint

Cite this