Title :
A multi-domain security policy distribution architecture for dynamic IP based VPN management
Author :
Barrere, François ; Benzekri, Abdelmalek ; Grasset, Frédéric ; Laborde, Romain
Author_Institution :
UPS-IRIT, Toulouse, France
Abstract :
Nowadays, VPN technologies are frequently used to secure communications between remote sites. If creating a VPN is under control, managing it is still problematic. The main problem is providing scalability in the deployment process. Deploying a VPN means that some common security rules have to be shared between partners. But tools for doing this are not interoperable because of lack of standards. Moreover the security rules sharing must be dynamic to follow the need of today requirements for collaborative working. Proposals for this purpose fail to offer a sound solution to the policy distribution issues between multiple independent administrative domains. In this paper we propose an upgradeable architecture enabling policy distribution for multiple purposes.
Keywords :
configuration management; distributed processing; groupware; security of data; VPN deployment; VPN management; administrative domains; collaborative working; policy distribution; scalability; security policy; security rules; upgradeable architecture; Collaborative work; Communication system control; Concurrent engineering; Engineering management; Proposals; Scalability; Security; Technology management; Uninterruptible power systems; Virtual private networks;
Conference_Titel :
Policies for Distributed Systems and Networks, 2002. Proceedings. Third International Workshop on
Print_ISBN :
0-7695-1611-4
DOI :
10.1109/POLICY.2002.1011313
