Evolving Bipartite Authentication Graph PartitionsIEEE Transactions on Dependable and Secure Computing
AbstractAs large scale enterprise computer networks become more ubiquitous, finding the appropriate balance between user convenience and user access control is an increasingly challenging proposition. Suboptimal partitioning of users’ access and available services contributes to the vulnerability of enterprise networks. Previous edge-cut partitioning methods unduly restrict users’ access to network resources. This paper introduces a novel method of network partitioning superior to the current state-of-the-art which minimizes user impact by providing alternate avenues for access that reduce vulnerability. Networks are modeled as bipartite authentication access graphs and a multi-objective evolutionary algorithm is used to simultaneously minimize the size of large connected components while minimizing overall restrictions on network users. Results are presented on a real world data set that demonstrate the effectiveness of the introduced method compared to previous naive methods.
Research Center/Lab(s)Center for High Performance Computing Research
Document TypeArticle - Journal
Rights© 2017 Institute of Electrical and Electronics Engineers (IEEE), All rights reserved.
Citation InformationAaron S. Pope, Daniel R. Tauritz and Alexander D. Kent. "Evolving Bipartite Authentication Graph Partitions" IEEE Transactions on Dependable and Secure Computing Vol. PP Iss. 99 (2017)
Available at: http://works.bepress.com/daniel-tauritz/65/