Share Email Print
cover

Proceedings Paper

Dynamic policy enforcement in JBI information management services with the KAoS policy and domain services
Author(s): Justin Donnelly; Jacob Madden; Alden Roberts; Matthew Greenberg; Jeffrey Bradshaw; Andrzej Uszok
Format Member Price Non-Member Price
PDF $14.40 $18.00
cover GOOD NEWS! Your organization subscribes to the SPIE Digital Library. You may be able to download this paper for free. Check Access

Paper Abstract

English-language policies about the desired behavior of computer systems often suffer from translation errors when implemented with a proliferation of low-level rules governing access control, resource allocation and configuration. To solve this, Dynamic Policy Enforcement systems replace these low-level rules with a relatively small number of semantically grounded, machine-understandable policy statements. These statements use domain terms defined in an ontology that are formally defined so that they can be enforced by the system but also meaningful to human administrators to ensure that they accurately represent organizational policies. In this paper, we describe the application of one such Dynamic Policy Enforcement system, KAoS, to the control of distributed, information-management services defined by the Air Force Research Laboratory's Joint Battlespace Infosphere (JBI) program. Our research allows administrators to define the desired behavior of the participants in the system, both human and software, with one collection of well defined policies. As a result, a single set of tools for the definition, analysis, control, and monitoring of policy can be used to implement access control, service configuration, and service delivery prioritization.

Paper Details

Date Published: 30 April 2007
PDF: 12 pages
Proc. SPIE 6578, Defense Transformation and Net-Centric Systems 2007, 65780B (30 April 2007); doi: 10.1117/12.720702
Show Author Affiliations
Justin Donnelly, Lockheed Martin Advanced Technology Labs. (United States)
Jacob Madden, Lockheed Martin Advanced Technology Labs. (United States)
Alden Roberts, Lockheed Martin Advanced Technology Labs. (United States)
Matthew Greenberg, Lockheed Martin Advanced Technology Labs. (United States)
Jeffrey Bradshaw, Institute for Human and Machine Cognition (United States)
Andrzej Uszok, Institute for Human and Machine Cognition (United States)


Published in SPIE Proceedings Vol. 6578:
Defense Transformation and Net-Centric Systems 2007
Raja Suresh, Editor(s)

© SPIE. Terms of Use
Back to Top