Policy Mediation for Multi-Enterprise Environments
نویسندگان
چکیده
Existing software infrastructures and middleware provide uniform security services across heterogeneous information networks. However, few, if any, tools exist that support access control policy management for and between large enterprise information networks. Insiders often exploit gaps in policies to mount devastating attacks. This paper presents a Policy Machine and Policy Mediation Architecture for coordinating diverse policies in large information networks. The language-based approach adopted by each of these technologies permits local and global access control policy validation with static analysis and other formal techniques. Together, the Policy Machine and Policy Mediation Architecture comprise an effective system for closing policy gaps in multi-enterprise environments.
منابع مشابه
Embedding agents in business applications using enterprise integration patterns
This paper addresses the integration of agents with external resources and services in enterprise computing environments. We propose an approach for interfacing agents and existing message routing and mediation engines based on the endpoint concept from the enterprise integration patterns of Hohpe and Woolf.
متن کاملMediation in the Knowledgeable Community
The Knowledgeable Community is a framework of knowledge sharing and reuse based on a multi-agent architecture. In this paper, we describe the scope and goal of the Knowledgeable Community project, present the organizational structure that facilitates mediation between those agents requesting for a service and those providing the service, and illustrate a technique of ontology-based mediation by...
متن کاملX - Rbac : an Access Control Language for Multi - Domain Environments
A multi-domain application environment consists of distributed multiple organizations, each employing its own security policy, allowing highly intensive inter-domain accesses. Ensuring security in such an environment poses several challenges. XML technologies are being perceived as the most promising approach for developing pragmatic security solutions for such environments because of the integ...
متن کاملA Multi-agent Based Approach for Load Distribution in Multi-enterprise Environments
This paper presents and discusses an automated contracting mechanism for load distribution in multi-enterprise environments. Within each enterprise, tasks are allocated by a multi-agent system whose agents develop cooperative processes in order to determine the best nodes for execution. When prootable, a negotiation process is started as a way to select a remote enterprise to execute a speciic ...
متن کاملDynamic Policy Model for Large Evolving Enterprises
The nature of an open distributed environment provides a resoundingly diverse yet potentially chaotic environment for users. A great deal of research has focused on the management of resources in such an environment and policy-based management has emerged as one such promising solution. In order to support large evolving enterprises we have developed a policy model that is scalable, able to cop...
متن کامل