@inbook{0bcecb1e3a4e4b57b2e6a866973cf5f3,
title = "Policy enforcement point model",
abstract = "As information systems become more complex and dynamic, Policy Decision Points (PDPs) and Policy Enforcement Points (PEPs) follow the same trend. It becomes thus increasingly important to model the capabilities of these PDPs and PEPs, both in terms of coverage, dependencies and scope. In this paper, we focus on Policy Enforcement Points to model the objects on which they may enforce security constraints. This model, called the PEP Responsibility Domain (RD(PEP)), is build based on the configuration of the PEP following a bottom-up approach. This model can then be applied to multiple use cases, three of them are shown as examples in this paper, including policy evaluation and intrusion detection assessment and alert correlation.",
keywords = "Alert correlation, Approximation Accuracy, Policy Enforcement Point, Security policy",
author = "Mustapha, \{Yosra Ben\} and Herv{\'e} Debar and Gregory Blanc",
note = "Publisher Copyright: {\textcopyright} Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2015.",
year = "2015",
month = jan,
day = "1",
doi = "10.1007/978-3-319-23829-6\_20",
language = "English",
series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",
publisher = "Springer Verlag",
pages = "278--286",
booktitle = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",
}