SA Forum Security Service (SEC): An use case study
نویسنده
چکیده
Security has become an important requirement for HA systems. To address this, the SA Forum Security service (SEC) Specifications have been recently published [6]. This paper presents an use case of using SEC to enforce and improve the security of a GGSN node. The goal of the paper is not a detailed study of security in GGSN applications but rather show through a simple use case the place of SEC in SA Forum eco-system and clarify different concepts behind the SEC specifications for SEC users and implementers. The case study starts with presenting some attack scenarios, then the security requirements deduced from the attacks are explained and how they lead to the adequate security policy. Finally, we describe how SEC mitigate the attacks and enforces the security for the GGSN system.
منابع مشابه
Towards the Generation of AMF Configurations from Use Case Maps Based Availability Requirements
Dependability aspects, such as availability and security, are critical in the design and implementation of distributed real-time systems. As a result, it is becoming crucial to model and analyze dependability requirements at the early stages of system development life-cycle. The Service Availability Forum (SA Forum) has developed a set of standard API specifications to standardize high-availabi...
متن کاملSemantic aware attribution analysis of remote exploits
Web services have been greatly threatened by remote exploit code attacks, where maliciously crafted HTTP requests are used to inject binary code to compromise web servers and web applications. In practice, besides detection of such attacks, attack attribution analysis (i.e., to automatically categorize exploits or determine whether an exploit is a variant of an attack from the past) is also ver...
متن کاملQoS2: a framework for integrating quality of security with quality of service
Different security measures have emerged to encounter various Internet security threats, ensuring a certain level of protection against them. However, this does not come without a price. Indeed, there is a general agreement that high security measures involve high amount of resources, ultimately impacting the perceived Quality of Service (QoS). The objective of this paper is to define a framewo...
متن کاملSurvey of Security in Grid Services
This article provides a survey of Security in Grid Services coming from a study of many papers most of which were done by the Grid Forum OGSA-SEC (Open Grid Service Architecture Security) working group, GSI (Grid Security Infrastructure) working group, and Globus Alliance team and other people who contributed to Grid. It describes the best practice in terms of Grid Security Challenges, Grid Sec...
متن کاملA Sociological Study on Social Trust of Social Security Organization’s Insured Population (Case Study: West Tehran Social Security Branches)
Social trust is one of the foundations for social order in society. Trust in any organization is affected by various factors such as customer satisfaction, service quality, staff skill and taking into account the customer orientation and service receivers’ satisfaction principles. This research seeks to study the sociological study of social trust of the insured population of social security or...
متن کامل