Title : 
Safety and security of programmable network infrastructures
         
        
            Author : 
Alexander, D. Scott ; Arbaugh, William A. ; Keromytis, Angelos D. ; Smith, Jonathan M.
         
        
            Author_Institution : 
Pennsylvania Univ., Philadelphia, PA, USA
         
        
        
        
        
            fDate : 
10/1/1998 12:00:00 AM
         
        
        
        
            Abstract : 
Safety and security are two reliability properties of a system. A “safe” system provides protection against errors of trusted users, while a “secure” system protects against errors introduced by untrusted users. There is considerable overlap between mechanisms to support each property. Requirements for rapid service creation have stimulated the development of programmable network infrastructures, where end users or service providers can customize the properties of a network infrastructure while it continues to operate. A central concern of potential users of such systems is their reliability and, most specifically, their safety and security. In this article we explain the impact the network service model and architecture have on safety and security, and provide a model with which policies can be translated into restrictions of a general system. We illustrate these ideas with the Secure Active Network Environment (SANE) architecture, which provides a means of controlling access to the functions provided by any programmable infrastructure
         
        
            Keywords : 
network operating systems; programming languages; safety; security of data; telecommunication computing; telecommunication network reliability; Secure Active Network Environment; access control; error protection; network architecture; network service model; operating system; programmable languages; programmable network infrastructures; reliability properties; safety; security; service creation; service providers; IP networks; Multicast protocols; Power system dynamics; Power system modeling; Power system reliability; Proposals; Protection; Safety; Switches; Web and internet services;
         
        
        
            Journal_Title : 
Communications Magazine, IEEE