User-oriented Network Security Policy Specification. Valenza, F. & Lioy, A. J. of Internet Services and Information Security (JISIS), 8(2):33–47, 2018. ![User-oriented Network Security Policy Specification [pdf]](https://bibbase.org/img/filetypes/pdf.svg "pdf")
Paper doi abstract bibtex 3 downloads The configuration and management of security controls and applications is complex and not well understood by the majority of end-users (i.e. it typically requires specific skills). The security policy language simplifies this task and reduces the number of errors and anomalies. This paper proposes the specification of the two mechanisms for defining user’s security policies, namely High-level Security Policy Language (HSPL) and Medium-level Security Policy Language (MSPL). HSPL is suitable for expressing the protection requirements of typical non-technical users, while MSPL is a lower-level abstraction useful for expressing specific configurations of security controls in a generic format (as such it is more appealing for technical users).© 2018, Innovative Information Science and Technology Research Group.
@Article{2018JISIS,
author = {Fulvio Valenza and Antonio Lioy},
doi = {10.22667/JISIS.2018.05.31.033},
journal = {J. of Internet Services and Information Security (JISIS)},
number = {2},
pages = {33--47},
title = {User-oriented Network Security Policy Specification},
volume = {8},
year = {2018},
abstract={The configuration and management of security controls and applications is complex and not well
understood by the majority of end-users (i.e. it typically requires specific skills). The security policy
language simplifies this task and reduces the number of errors and anomalies. This paper proposes the
specification of the two mechanisms for defining user’s security policies, namely High-level Security
Policy Language (HSPL) and Medium-level Security Policy Language (MSPL). HSPL is suitable for
expressing the protection requirements of typical non-technical users, while MSPL is a lower-level
abstraction useful for expressing specific configurations of security controls in a generic format (as
such it is more appealing for technical users).© 2018, Innovative Information Science and Technology Research Group.},
keywords={Policy Refinement, Security Automation},
url = {https://iris.polito.it/retrieve/e384c430-ba6d-d4b2-e053-9f05fe0a1d67/jisis-2018-vol8-no2-03.pdf}
}
Downloads: 3
{"_id":"KbQPJbby43acxsaD8","bibbaseid":"valenza-lioy-userorientednetworksecuritypolicyspecification-2018","author_short":["Valenza, F.","Lioy, A."],"bibdata":{"bibtype":"article","type":"article","author":[{"firstnames":["Fulvio"],"propositions":[],"lastnames":["Valenza"],"suffixes":[]},{"firstnames":["Antonio"],"propositions":[],"lastnames":["Lioy"],"suffixes":[]}],"doi":"10.22667/JISIS.2018.05.31.033","journal":"J. of Internet Services and Information Security (JISIS)","number":"2","pages":"33–47","title":"User-oriented Network Security Policy Specification","volume":"8","year":"2018","abstract":"The configuration and management of security controls and applications is complex and not well understood by the majority of end-users (i.e. it typically requires specific skills). The security policy language simplifies this task and reduces the number of errors and anomalies. This paper proposes the specification of the two mechanisms for defining user’s security policies, namely High-level Security Policy Language (HSPL) and Medium-level Security Policy Language (MSPL). HSPL is suitable for expressing the protection requirements of typical non-technical users, while MSPL is a lower-level abstraction useful for expressing specific configurations of security controls in a generic format (as such it is more appealing for technical users).© 2018, Innovative Information Science and Technology Research Group.","keywords":"Policy Refinement, Security Automation","url":"https://iris.polito.it/retrieve/e384c430-ba6d-d4b2-e053-9f05fe0a1d67/jisis-2018-vol8-no2-03.pdf","bibtex":"@Article{2018JISIS,\r\n author = {Fulvio Valenza and Antonio Lioy},\r\n doi = {10.22667/JISIS.2018.05.31.033},\r\n journal = {J. of Internet Services and Information Security (JISIS)},\r\n number = {2},\r\n pages = {33--47},\r\n title = {User-oriented Network Security Policy Specification},\r\n volume = {8},\r\n year = {2018},\r\n abstract={The configuration and management of security controls and applications is complex and not well\r\nunderstood by the majority of end-users (i.e. it typically requires specific skills). The security policy\r\nlanguage simplifies this task and reduces the number of errors and anomalies. This paper proposes the\r\nspecification of the two mechanisms for defining user’s security policies, namely High-level Security\r\nPolicy Language (HSPL) and Medium-level Security Policy Language (MSPL). HSPL is suitable for\r\nexpressing the protection requirements of typical non-technical users, while MSPL is a lower-level\r\nabstraction useful for expressing specific configurations of security controls in a generic format (as\r\nsuch it is more appealing for technical users).© 2018, Innovative Information Science and Technology Research Group.},\r\n keywords={Policy Refinement, Security Automation},\r\n url = {https://iris.polito.it/retrieve/e384c430-ba6d-d4b2-e053-9f05fe0a1d67/jisis-2018-vol8-no2-03.pdf}\r\n}\r\n\r\n","author_short":["Valenza, F.","Lioy, A."],"key":"2018JISIS","id":"2018JISIS","bibbaseid":"valenza-lioy-userorientednetworksecuritypolicyspecification-2018","role":"author","urls":{"Paper":"https://iris.polito.it/retrieve/e384c430-ba6d-d4b2-e053-9f05fe0a1d67/jisis-2018-vol8-no2-03.pdf"},"keyword":["Policy Refinement","Security Automation"],"metadata":{"authorlinks":{}},"downloads":3},"bibtype":"article","biburl":"https://raw.githubusercontent.com/FulvioValenza/bibliography/main/Valenza_bibliography.bib","dataSources":["JbiX35GNqPCF3nids"],"keywords":["policy refinement","security automation"],"search_terms":["user","oriented","network","security","policy","specification","valenza","lioy"],"title":"User-oriented Network Security Policy Specification","year":2018,"downloads":3}