Dynamic Policy Evaluation for Containing Network Attacks (DEFCN)

Abstract

The DARPA funded DEFCN project at USC's Information Sciences Institute has developed an access control framework that is sensitive to network threat conditions. Project members developed the Generic Authorization and Access control Application Programming Interface (GAA-API), a middle-ware API for generic authorization and accesscontrol and have integrated this framework with intrusion detection and response systems. Access policies evaluated by the GAA-API can be conditioned upon network threat conditions communicated by intrusion detection systems, and they also adapt to changes in information sharing policies prompted by the formation of dynamic coalitions. The GAAAPI allows the generation of audit records at the control points in applications. The level of detail of the audit records generated is dependent upon the network threat condition and on authentication characteristics of a request.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 01, 2005
Accession Number
ADA431498

Entities

People

  • B. C. Neuman
  • Dongho Kim
  • Tatyana Ryutov

Organizations

  • University of Southern California

Tags

Communities of Interest

  • C4I
  • Cyber
  • Ground and Sea Platforms
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Computer Access Control
  • Computer Networks
  • Computer Programming
  • Computer Science
  • Control Systems
  • Cybersecurity
  • Detection
  • Detectors
  • Electronic Commerce
  • Electronic Mail
  • Information Science
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Operating Systems
  • Security Protocols
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Database Systems and Applications
  • Defense Financial Management and Audit.
  • Sensor Fusion and Tracking Systems.