Top

Automatic Control and Computer Sciences

Published in:

01-12-2023

A Method of Network Access Control for Ensuring Network Infrastructure Security Based on Severing Superfluous Network Connectivity

Authors: A. D. Shilova, A. A. Vorob’eva

Published in: Automatic Control and Computer Sciences | Issue 8/2023

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract—

This paper discusses problems of improving network infrastructure security. A network infrastructure is developed; an access control method based on severing superfluous network connectivity between subjects and objects is proposed and assessed; and potential directions of its development are outlined. This method can be used for network segmentation.

previous article Probabilistic Approach to Estimate the Cyber Resistance of Mobile Networks Based on Their Connectivity

next article Application of Machine Learning Methods to the Problem of Searching for a Region of Interest for Biometric Identification Based on the Pattern of Palm Veins

Petrov, S.N., Akhramenko, D.V., Goroshko, S.M., and Pulko, T.A., Access control in a local network using basic options of network equipment, Sist. Anal. Prikl. Inf., 2018, no. 3. https://doi.org/10.21122/2309-4923-2018-3-55-61

Tanenbaum, A.S., Computer Networks, Upper Saddle River, N.J.: Prentice Hall, 2003, 4th ed.

Anwar, R.W., Abdullah, T., and Pastore, F., Firewall best practices for securing smart healthcare environment: A review, Appl. Sci., 2021, vol. 11, no. 19, p. 9183. https://doi.org/10.3390/app11199183CrossRef

Khoumsi, A., Erradi, M., and Krombi, W., A formal basis for the design and analysis of firewall security policies, J. King Saud Univ. Comput. Inf. Sci., 2018, vol. 30, no. 1, pp. 51–66. https://doi.org/10.1016/j.jksuci.2016.11.008CrossRef

Kheirkhabarov, T.S., The algorithm of network traffic filtering rules ordering in firewall rule sets, Reshetnevskie Chteniya, 2014, vol. 2, pp. 334–336.

Starkov, D.I. and Zhukov, V.G., Automated firewall rule filtering based on the list of allowed network services, Reshetnevskie Chteniya, 2018, vol. 2, pp. 348–349.

Mordvin, D.V., Abramov, E.C., Sidorov, I.D., and Andreev, A.V., Method of automated construction of filtration rules of network traffic, Materialy mezhdunarodnoi nauchno-tekhnicheskoi konferentsii Kibernetika i vysokie tekhnologii veka (Proc. Int. Sci.-Tech. Conf. on Cybernetics and High Technologies of the Century), 2010.

Bondareva, A.D., Issues of assuring security in a network infrastructure by means of network segmentation, Sbornik trudov X Kongressa molodykh uchenykh (Proc. 10th Congress of Young Scientists), St. Petersburg, 2021, St. Petersburg: Nats. Issled. Univ. ITMO, 2021, vol. 1, pp. 31–35.

Li, M., Cheng, H., Cao, W., Yu, S., and Song, J., Access control method of SDN network based on zero trust, Tenth International Conference on Applications and Techniques in Cyber Intelligence (ICATCI 2022), Abawajy, J., Xu, Z., Atiquzzaman, M., and Zhang, X., Eds., Lecture Notes on Data Engineering and Communications Technologies, vol. 170, Cham: Springer, 2023, pp. 496–504. https://doi.org/10.1007/978-3-031-29097-8_59

10.

Bondareva, A. and Shilov, I., Method of grouping subjects and objects in information systems, 2021 30th Conf. of Open Innovations Association FRUCT, Oulu, Finland, 2021, IEEE, 2021, pp. 10–15. https://doi.org/10.23919/fruct53335.2021.9599989

11.

Musatov, V.K., Substantiation of efficiency in applying autocorrection of filtration rule bases in tools of internetwork screening, T-Comm: Telekommunikatsii Transp., 2014, no. 8, pp. 68–72.

12.

Melnikov, B. and Melnikova, E., On the classical version of the branch and bound method, Komp’yuternye Instrum. Obrazovanii, 2021, no. 1, pp. 21–44. https://doi.org/10.32603/2071-2340-2021-1-21-45

13.

Charon, I. and Hudry, O., Branch-and-bound methods, Concepts of Combinatorial Optimization, Paschos, V.Th., Ed., Wiley, 2013, vol. 1, pp. 39–69. https://doi.org/10.1002/9781118600245.ch3CrossRef

Title: A Method of Network Access Control for Ensuring Network Infrastructure Security Based on Severing Superfluous Network Connectivity
Authors: A. D. Shilova
A. A. Vorob’eva
Publication date: 01-12-2023
Publisher: Pleiades Publishing
Published in: Automatic Control and Computer Sciences / Issue 8/2023
Print ISSN: 0146-4116
Electronic ISSN: 1558-108X
DOI: https://doi.org/10.3103/S0146411623080308

Springer Professional

Abstract—

Please log in to get access to your license.

Other articles of this Issue 8/2023

Protection of Computational Machine Learning Models against Extraction Threat

Risk Assessment of Using Open Source Projects: Analysis of the Existing Approaches

Probabilistic Approach to Estimate the Cyber Resistance of Mobile Networks Based on Their Connectivity

Framework for Modeling Security Policies of Big Data Processing Systems

Improving the Efficiency of Multiagent Information Security Systems by Post-Quantum Cryptography Methods

Investigation of the Structure of the Isogeny Graph for Postquantum Cryptography Protocols