Home

About

Advanced Search

Browse by Discipline

Scientific Societies

E-print Alerts

Add E-prints

E-print Network
FAQHELPSITE MAPCONTACT US


  Advanced Search  

 
Resonance: Dynamic Access Control for Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark
 

Summary: Resonance: Dynamic Access Control for Enterprise Networks
Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark
School of Computer Science, Georgia Tech
ABSTRACT
Enterprise network security is typically reactive, and it relies
heavily on host security and middleboxes. This approach
creates complicated interactions between protocols and sys-
tems that can cause incorrect behavior and slow response to
attacks. We argue that imbuing the network layer with mech-
anisms for dynamic access control can remedy these ills.
We propose Resonance, a system for securing enterprise net-
works, where the network elements themselves enforce dy-
namic access control policies based on both flow-level infor-
mation and real-time alerts. Resonance uses programmable
switches to manipulate traffic at lower layers; these switches
take actions (e.g., dropping or redirecting traffic) to enforce
high-level security policies based on input from both higher-
level security policies and distributed monitoring and infer-
ence systems. We describe the design of Resonance, apply it
to Georgia Tech's network access control system, show how

  

Source: Akella, Aditya - Department of Computer Sciences, University of Wisconsin at Madison

 

Collections: Computer Technologies and Information Sciences