Dynamic Policy-Based Network Management for a Secure Coalition Environment

This article reports the latest results of an R&D effort to develop a prototype implementation of a dynamic policy-based network management (PBNM) system that can be used to configure and manage a secure network for a coalition environment across an unsecured wide area network. The prototype, based on a distributed architecture, includes capabilities for policy creation and management, dynamic policy negotiation, and dynamic policy provisioning. The policy negotiation facilitates the rapid deployment of a coalition network while the dynamic policy provisioning automates the configuration and management of network services including firewalls, virtual private network connections, routing, quality of service (QoS), and domain name services. Such a PBNM system enhances an organization´s ability to react to network incidents identified by a network situational awareness assessment. Although the focus of the current research is a military coalition environment, the system can be used in any distributed enterprise or collaborative environment