Title :
PEP = Point to Enhance Particularly
Author :
Laborde, Romain ; Kamel, Michel ; Barrere, Francois ; Benzekri, Abdelmalek
Author_Institution :
IRIT, UPS, Toulouse
Abstract :
Policies are rules that govern the choices in behaviour of a system. Policy based management aims at supporting dynamic adaptability of behaviour by changing policy without receding or stopping the system. The common accepted architecture of such systems includes two main management agents: the policy decision point that analyses requests and set decisions based on a policy and the policy enforcement point that enforces the PDP ´s decision. While many works deal with PDP implementations, PEP is considered to be only an interface between applications to be managed and the PDP. PEPs are usually specific to an application and a context of use. As a consequence, they cannot be re-used for new applications and they are implemented from scratch each time. In this article, we present a modular architecture to implement reusable PEPs for policy based authorization systems.
Keywords :
authorisation; distributed processing; software architecture; task analysis; dynamic adaptability; management agents; modular architecture; policy based authorization system; policy based management; policy decision point; policy enforcement point; request analysis; system architecture; system behaviour; Authorization; Collaboration; Conferences; Decision making; Independent component analysis; Information analysis; Protocols; Uninterruptible power systems; Waste materials; Web server; Policy Based Management; design of PEP;
Conference_Titel :
Policies for Distributed Systems and Networks, 2008. POLICY 2008. IEEE Workshop on
Conference_Location :
Palisades, NY
Print_ISBN :
978-0-7695-3133-5
DOI :
10.1109/POLICY.2008.13
