Davide Belluardo
Models and strategies for automated security policy refinement.
Rel. Cataldo Basile, Francesco Settanni. Politecnico di Torino, Corso di laurea magistrale in Ingegneria Informatica (Computer Engineering), 2024
|
Preview |
PDF (Tesi_di_laurea)
- Tesi
Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (1MB) | Preview |
Abstract
In the rapidly evolving cybersecurity domain, refining high-level security policies is essential to effectively manage network threats' increasing complexity and diversity. This thesis builds on prior research that established a sophisticated refinement process to transform high-level policy directives into technical configurations that can be subsequently applied to network devices. This approach starts with parsing high-level specifications and network topology data to derive enforceable rules that align with the underlying network architecture and security requirements. Central to this process is using a Domain-Specific Language to craft expert systems called CLIPS, which enrich the achieved policy interpretations by extracting essential details from the abstract policy definitions.
This thesis work introduced several enhancements that aim to optimize the policy refinement process for complex network systems by incorporating advanced methodologies and tools to streamline the alignment of security measures with network architectures and ensure that the configurations are functional and pertinent to the specific operational environments
Relatori
Anno Accademico
Tipo di pubblicazione
Numero di pagine
Corso di laurea
Classe di laurea
Aziende collaboratrici
URI
 |
Modifica (riservato agli operatori) |
