IPsec Modulation for Quality of Security Service
Loading...
Authors
Sypropoulou, Evdoxia
Agar, Chris
Levin, Timothy E.
Irvine, Cynthia E.
Subjects
Advisors
Date of Issue
2002-03-13
Date
Publisher
15th International Parallel and Distributed Processing Symposium (IPDPS 2001), 10th Heterogeneous Computing Workshop (HCW 2001), (San Francisco, CA), pp. 810?823, IEEE Computer Society, April 2001.(
Language
Abstract
This paper discusses the modulation of security services in response to changes in network conditions or as a result of modified user or application security requirements. First, the notion of security variability and how security can be treated as a dimension of Quality of Service in distributed systems is described. We discuss how security choices presented to users or applications and limits on these choices can be defined and managed through dynamic network policies. A costing framework for managing
resource utilization costs due to variant security is presented. And finally, we provide an analysis of how a specific security mechanism can be modulated to provide differing levels of security service in harmony with Quality of Security Service requests and we describe our proof of concept demonstration for such modulation with respect to IPSec.
Type
Article
Description
Series/Report No
Department
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Proceedings of the Workshop on Assurance in Distributed Systems and Networks, Vienna, Austria, 2 July 2002
Distribution Statement
Approved for public release; distribution is unlimited.
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.