Abstract
In this paper, we discuss a distributed policy control model where each object has its own policy and objects’ behaviors are autonomously controlled based on those policies when they interact with one another. First the paper proposes a policy specification language suitable for distributed policy control. The operational semantics of the language is formally defined. Based on the formal semantics, we propose a runtime policy control mechanism for interpreting a given policy specification and sequencing method execution.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
M. Ancona, W. Cazzola and E. B. Fernandez: Reflective authorization systems: Possibilities, benefits, and drawbacks, Secure Internet Programming, LNCS 1603, 35–49, 1999.
N. C. Damianou: A Policy Framework for Management of Distributed Systems, PhD thesis, Imperial College of Science, Technology and Medicine, 2002. http://www-dse.doc.ic.ac.uk/Research/policies/ponder/thesis-ncd.pdf.
N. C. Damianou, N. Dulay E. Lupu and M. Sloman: The Ponder policy specification language, POLICY 2001, LNCS 1995, 18–38.
S. Jajodia, P. Samarati and V. S. Subrahmanian: A logical language for expressing authorizations, 1997 IEEE Symp. on Security and Privacy, 31–42.
M. Kudo and S. Hada: XML document security based on provisional authorization, 7th ACM Conf. on Computer and Communication Security, 87–96, 2000.
E. C. Lupu and M. Sloman: Conflicts in policy-based distributed systems management, IEEE Trans. on Software Engineering, 25(6), 852–869, 1999.
T. Tonouchi: An Operational Semantics of a’ small’ Ponder, July 2001. http://www.doc.ic.ac.uk/~tton/Semantics.pdf.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Kuninobu, S., Takata, Y., Taguchi, D., Nakae, M., Seki, H. (2002). A Specification Language for Distributed Policy Control. In: Deng, R., Bao, F., Zhou, J., Qing, S. (eds) Information and Communications Security. ICICS 2002. Lecture Notes in Computer Science, vol 2513. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-36159-6_33
Download citation
DOI: https://doi.org/10.1007/3-540-36159-6_33
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-00164-5
Online ISBN: 978-3-540-36159-6
eBook Packages: Springer Book Archive