Title :
Supporting Security Automation for Multi-chassis Link Aggregation Groups via the Interconnected-Asset Ontology
Author :
Birkholz, Henk ; Sieverdingbeck, Ingo
Author_Institution :
Fraunhofer Inst. for Secure Inf. Technol. (SIT) Darmstadt, Darmstadt, Germany
Abstract :
Multi-chassis (MC) endpoints and link aggregation groups (LAG) are common configurations in production networks today. Security automation processes that rely on correct topological data require a machine-process able representation of corresponding network topologies. Unfortunately, MC-LAG setups can be interpreted in more than one way regarding the topological layout, which complicates the process significantly. In this paper we present an extension to the Interconnected-asset topology (IO) that provides detailed data about topologies in process-specific views to better support security automation processes.
Keywords :
computer network security; ontologies (artificial intelligence); telecommunication network topology; IO; MC-LAG setups; interconnected-asset topology; link aggregation groups; machine-processable representation; multichassis endpoints; network topologies; production networks; security automation processes; topological layout; Automation; Layout; Network topology; Ontologies; Security; Standards; Topology; Link Aggregation; Multi-Chassis; Network Topologies; Ontologies; Security Automation;
Conference_Titel :
Availability, Reliability and Security (ARES), 2014 Ninth International Conference on
Conference_Location :
Fribourg
DOI :
10.1109/ARES.2014.23
