Title :
Integrated Management of Distributed Packet Filter Configurations in Carrier-Grade IP Networks
Author :
Tödtmann, Birger ; Rathgeb, Erwin P.
Author_Institution :
Univ. of Duisburg-Essen, Essen
Abstract :
With the trend towards "triple play" and "next generation network" technologies running on IP-based multiservice networks, operators have to maintain increasingly complex IP management architectures which need tight protection as their in-band signaling and control protocols are inherently susceptible to attacks from outsiders. Operators therefore need an efficient management of local security functions distributed among network components that enforce a coherent global network security policy. In this paper, a flexible and scalable approach for the management of distributed packet filters in IP-based multi-vendor networks is presented that allows the operator to incorporate filter capability restrictions within nodes and the trade-off between operational risk and attack risk into their management decisions.
Keywords :
IP networks; telecommunication network management; IP-based multi-vendor networks; attack risk; carrier-grade IP networks; distributed packet filter configurations; filter capability restrictions; integrated management; operational risk; telecommunication network management; Authentication; Conference management; Control systems; Cryptography; Environmental management; Filters; IP networks; Next generation networking; Protection; Telecommunication traffic;
Conference_Titel :
Networking, 2007. ICN '07. Sixth International Conference on
Conference_Location :
Martinique
Print_ISBN :
0-7695-2805-8
Electronic_ISBN :
0-7695-2805-8
DOI :
10.1109/ICN.2007.51
