Title: Infrastructural support for enforcing and managing distributed application-level policies
Authors: Goovaerts, Tom
De Win, Bart
Joosen, Wouter #
Issue Date: 21-Feb-2008
Publisher: Elsevier Science Publishers B. V.
Host Document: Electronic Notes in Theoretical Computer Science vol:197 issue:1 pages:31-43
Conference: Workshop on run time enforcement for mobile and distributed systems edition:1 location:Dresden, Germany date:27 September 2007
Abstract: State-of-the-art security mechanisms are often enforced in isolation from each other, which limits the kinds of policies that can be enforced in distributed and heterogeneous settings. More specifically, it is hard to enforce application-level policies that affect, or use information from multiple distributed components. This paper proposes the concept of a Security Service Bus (SSB), which is a dedicated communication channel between the applications and the different security mechanisms. The SSB treats the security mechanisms as reusable, stand-alone security services that can be bound to the applications and it allows the enforcement of advanced policies by providing uniform access to application-level information. This leads to a security infrastructure that is more flexible and more manageable and that can enforce more expressive policies.
Publication status: published
KU Leuven publication type: IC
Appears in Collections:Informatics Section
# (joint) last author

Files in This Item:
File Description Status SizeFormat
science.pdfArticle Published 329KbAdobe PDFView/Open


All items in Lirias are protected by copyright, with all rights reserved.