Deriving enforcement mechanisms for policies
Date
2007-06-01
Advisors
Journal Title
Journal ISSN
ISSN
Volume Title
Publisher
Type
Other
Peer reviewed
Abstract
Description
Policies provide a flexible and scalable approach to the management of distributed systems by separating the specification of security requirements and their enforcement. This paper addresses the development of enforcement mechanisms from a theoretical perspective and shows how enforcement code can be formally derived for compositional, history-dependent policies that can change dynamically over time or on the occurrence of events.
The work is currently supported by the MoD-funded DIF-DTC projects: "Secure and Trusted Agents for Information Fusion" and "Trust Management in Collaborative Systems". The technology behind this work is known as SANTA which is now being exploited by GD Ltd.
Keywords
RAE 2008, UoA 23 Computer Science and Informatics
Citation
Zedan, H. et al. (2007) Deriving enforcement mechanisms for policies, Proceedings of the 8th IEEE International workshop on policies for distributed systems and networks policy 2007, pp. 161-170.