Title :
Distributed security management using LDAP directories
Author_Institution :
PPGIA, Pontificia Univ. Catolica do Parana, Brazil
Abstract :
Presently, many companies share business information by interconnecting their networks through the Internet. However, this advanced degree of connectivity also increases the network security management complexity. Most of this complexity results form the need of controlling the connectivity of each network with respect to the others and the Internet. Also, it is necessary to take into account changes on users, shared resources and services, not only in the local network, but also in the interconnected networks. Because of these changes, network administrators are systematically confronted with firewall and other network elements reconfiguration. This paper proposes the use of a LDAP global directory service to simplify the task of managing the security in large-scale networks. By taking advantage of the distributed features of directory services, the paper defines a strategy for managing a group of interconnected networks as a single entity, without removing the administration autonomy of each independent network
Keywords :
Internet; computer network management; security of data; Internet; LDAP directories; autonomous networks; business information sharing; connectivity; directory services; distributed security management; firewall; global directory service; interconnected networks; network administrators; network reconfiguration; network security management; shared network infrastructure; shared resources; shared services; Access control; Access protocols; Companies; Electronic mail; IP networks; Information security; Operating systems; Protection; Web and internet services; Web pages;
Conference_Titel :
Computer Science Society, 2001. SCCC '01. Proceedings. XXI Internatinal Conference of the Chilean
Conference_Location :
Punta Arenas
Print_ISBN :
0-7695-1396-4
DOI :
10.1109/SCCC.2001.972642
