DocumentCode :
1921403
Title :
A Pluggable Domain Management Approach for Building Practical Distributed Coalitions
Author :
Katsuno, Y. ; Watanabe, Yuji ; Kudo, Michiharu ; Okamoto, Eiji
Author_Institution :
Tokyo Res. Lab., IBM Res., Yamato
fYear :
2009
fDate :
16-19 March 2009
Firstpage :
1
Lastpage :
8
Abstract :
Recently, much attention has been paid to research on distributed coalitions, as a possible mechanism to embody distributed information flow control which can apply security policies to distributed components over nodes by making the components enforce mandatory access controls for resources based on the policies. Some projects have proposed prototype systems of distributed coalitions, but they assume that each component that participates in a domain has domain management functions. This assumption is reasonable when the components are designed for a distributed coalition, but it has been an obstacle when actually building distributed coalitions in existing environments, because it is difficult for existing components in real environments that were not designed for use in distributed coalitions to update their code and add support for domain management functions while considering the influences of their environments, especially for commercial components. In this paper, we propose a Domain Management Agent (DMA) for building practical distributed coalitions, which performs domain management on behalf of a component and emphasizes minimizing the influence on existing environments. We implement a prototype system on Microsoft Windows platform for broad use by many people, evaluate its performance overhead, and show that our approach is feasible.
Keywords :
authorisation; distributed object management; object-oriented programming; software agents; Microsoft Windows; distributed coalition; distributed components; distributed information flow control; domain management agent; domain management functions; mandatory access controls; pluggable domain management approach; security policy; Availability; Security;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Availability, Reliability and Security, 2009. ARES '09. International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4244-3572-2
Electronic_ISBN :
978-0-7695-3564-7
Type :
conf
DOI :
10.1109/ARES.2009.73
Filename :
5066448
Link To Document :
بازگشت