An efficient management method of access policies for hierarchical virtual private networks

Kiyohiko Okayama, Nariyoshi Yamai, Hayato Ishibashi, Kota Abe, Toshio Matsuura

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

VPN (Virtual Private Network) is one of the most important technologies on the Internet. With VPN, we can securely access to resources in the organizational network via the Internet. In VPNs having hierarchical structure, since each VPN domain has different access policy (whether VPN gateway should perform authentication, data encryption, and so on or not), an administrator of a VPN domain may need to configure access policies which are different from every VPN sub-domain. However, in the existing VPN methods, since access policies are stored in a static configuration file of each VPN gateway, an administrator of a VPN domain has to cooperate with the other administrators of its sub-domains. Therefore, management cost of access policies becomes considerably large if the organization has large and complicated structure. In this paper, we propose an efficient management method of access policies for hierarchical VPNs. In order to reduce management cost, we introduce a database with hierarchical structure to represent access policies easily and policy servers to get access policies automatically. The effectiveness of our proposed method is confirmed by an experiment on an actual network using policy servers based on the proposed method.

Original languageEnglish
Title of host publicationProceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007
DOIs
Publication statusPublished - 2007
Event2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007 - Bangalore, India
Duration: Jan 7 2007Jan 12 2007

Other

Other2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007
CountryIndia
CityBangalore
Period1/7/071/12/07

Fingerprint

Virtual private networks
Servers
Internet
Authentication
Cryptography
Costs

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Software
  • Electrical and Electronic Engineering

Cite this

Okayama, K., Yamai, N., Ishibashi, H., Abe, K., & Matsuura, T. (2007). An efficient management method of access policies for hierarchical virtual private networks. In Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007 [4268017] https://doi.org/10.1109/COMSWA.2007.382593

An efficient management method of access policies for hierarchical virtual private networks. / Okayama, Kiyohiko; Yamai, Nariyoshi; Ishibashi, Hayato; Abe, Kota; Matsuura, Toshio.

Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007. 2007. 4268017.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Okayama, K, Yamai, N, Ishibashi, H, Abe, K & Matsuura, T 2007, An efficient management method of access policies for hierarchical virtual private networks. in Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007., 4268017, 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007, Bangalore, India, 1/7/07. https://doi.org/10.1109/COMSWA.2007.382593
Okayama K, Yamai N, Ishibashi H, Abe K, Matsuura T. An efficient management method of access policies for hierarchical virtual private networks. In Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007. 2007. 4268017 https://doi.org/10.1109/COMSWA.2007.382593
Okayama, Kiyohiko ; Yamai, Nariyoshi ; Ishibashi, Hayato ; Abe, Kota ; Matsuura, Toshio. / An efficient management method of access policies for hierarchical virtual private networks. Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007. 2007.
@inproceedings{fb78d158ff55453b8493f50d068bd91b,
title = "An efficient management method of access policies for hierarchical virtual private networks",
abstract = "VPN (Virtual Private Network) is one of the most important technologies on the Internet. With VPN, we can securely access to resources in the organizational network via the Internet. In VPNs having hierarchical structure, since each VPN domain has different access policy (whether VPN gateway should perform authentication, data encryption, and so on or not), an administrator of a VPN domain may need to configure access policies which are different from every VPN sub-domain. However, in the existing VPN methods, since access policies are stored in a static configuration file of each VPN gateway, an administrator of a VPN domain has to cooperate with the other administrators of its sub-domains. Therefore, management cost of access policies becomes considerably large if the organization has large and complicated structure. In this paper, we propose an efficient management method of access policies for hierarchical VPNs. In order to reduce management cost, we introduce a database with hierarchical structure to represent access policies easily and policy servers to get access policies automatically. The effectiveness of our proposed method is confirmed by an experiment on an actual network using policy servers based on the proposed method.",
author = "Kiyohiko Okayama and Nariyoshi Yamai and Hayato Ishibashi and Kota Abe and Toshio Matsuura",
year = "2007",
doi = "10.1109/COMSWA.2007.382593",
language = "English",
isbn = "1424406145",
booktitle = "Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007",

}

TY - GEN

T1 - An efficient management method of access policies for hierarchical virtual private networks

AU - Okayama, Kiyohiko

AU - Yamai, Nariyoshi

AU - Ishibashi, Hayato

AU - Abe, Kota

AU - Matsuura, Toshio

PY - 2007

Y1 - 2007

N2 - VPN (Virtual Private Network) is one of the most important technologies on the Internet. With VPN, we can securely access to resources in the organizational network via the Internet. In VPNs having hierarchical structure, since each VPN domain has different access policy (whether VPN gateway should perform authentication, data encryption, and so on or not), an administrator of a VPN domain may need to configure access policies which are different from every VPN sub-domain. However, in the existing VPN methods, since access policies are stored in a static configuration file of each VPN gateway, an administrator of a VPN domain has to cooperate with the other administrators of its sub-domains. Therefore, management cost of access policies becomes considerably large if the organization has large and complicated structure. In this paper, we propose an efficient management method of access policies for hierarchical VPNs. In order to reduce management cost, we introduce a database with hierarchical structure to represent access policies easily and policy servers to get access policies automatically. The effectiveness of our proposed method is confirmed by an experiment on an actual network using policy servers based on the proposed method.

AB - VPN (Virtual Private Network) is one of the most important technologies on the Internet. With VPN, we can securely access to resources in the organizational network via the Internet. In VPNs having hierarchical structure, since each VPN domain has different access policy (whether VPN gateway should perform authentication, data encryption, and so on or not), an administrator of a VPN domain may need to configure access policies which are different from every VPN sub-domain. However, in the existing VPN methods, since access policies are stored in a static configuration file of each VPN gateway, an administrator of a VPN domain has to cooperate with the other administrators of its sub-domains. Therefore, management cost of access policies becomes considerably large if the organization has large and complicated structure. In this paper, we propose an efficient management method of access policies for hierarchical VPNs. In order to reduce management cost, we introduce a database with hierarchical structure to represent access policies easily and policy servers to get access policies automatically. The effectiveness of our proposed method is confirmed by an experiment on an actual network using policy servers based on the proposed method.

UR - http://www.scopus.com/inward/record.url?scp=34748860837&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34748860837&partnerID=8YFLogxK

U2 - 10.1109/COMSWA.2007.382593

DO - 10.1109/COMSWA.2007.382593

M3 - Conference contribution

AN - SCOPUS:34748860837

SN - 1424406145

SN - 9781424406142

BT - Proceedings of the 2007 2nd International Conference on Communication System Software and Middleware and Workshops, COMSWARE 2007

ER -