Translator Disclaimer
30 April 2007 Dynamic policy enforcement in JBI information management services with the KAoS policy and domain services
Author Affiliations +
Abstract
English-language policies about the desired behavior of computer systems often suffer from translation errors when implemented with a proliferation of low-level rules governing access control, resource allocation and configuration. To solve this, Dynamic Policy Enforcement systems replace these low-level rules with a relatively small number of semantically grounded, machine-understandable policy statements. These statements use domain terms defined in an ontology that are formally defined so that they can be enforced by the system but also meaningful to human administrators to ensure that they accurately represent organizational policies. In this paper, we describe the application of one such Dynamic Policy Enforcement system, KAoS, to the control of distributed, information-management services defined by the Air Force Research Laboratory's Joint Battlespace Infosphere (JBI) program. Our research allows administrators to define the desired behavior of the participants in the system, both human and software, with one collection of well defined policies. As a result, a single set of tools for the definition, analysis, control, and monitoring of policy can be used to implement access control, service configuration, and service delivery prioritization.
© (2007) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Justin Donnelly, Jacob Madden, Alden Roberts, Matthew Greenberg, Jeffrey Bradshaw, and Andrzej Uszok "Dynamic policy enforcement in JBI information management services with the KAoS policy and domain services", Proc. SPIE 6578, Defense Transformation and Net-Centric Systems 2007, 65780B (30 April 2007); https://doi.org/10.1117/12.720702
PROCEEDINGS
12 PAGES


SHARE
Advertisement
Advertisement
Back to Top