Chapter 26 – Policy-Driven System Management

Policy-driven system management or policy-based management (PBM) is a research domain that aims to automate the management of large-scale computing systems. The long-term vision of PBM is that humans no longer need to care for low-level aspects of system management, but may focus on the specification of high-level management goals that will be autonomously enforced by computer agents. Ultimately, computing systems will be comparable to, for instance, biological systems that regulate basic body functions such as the heart rate without conscious intervention by humans. The promise of PBM lies, on the one hand, in reducing system management costs that grew significantly over the past decades and, on the other hand, in the improvement in service quality. Although PBM has several application domains, this chapter focuses particularly on its use for securing computing systems according to high-level security goals.

[1]  Raouf Boutaba,et al.  Policy-based Management: A Historical Perspective , 2007, Journal of Network and Systems Management.

[2]  Cataldo Basile,et al.  Network-Level Access Control Policy Analysis and Transformation , 2012, IEEE/ACM Transactions on Networking.

[3]  Ehab Al-Shaer,et al.  Conflict classification and analysis of distributed firewall policies , 2005, IEEE Journal on Selected Areas in Communications.

[4]  Jerome H. Saltzer,et al.  The protection of information in computer systems , 1975, Proc. IEEE.

[5]  Julie A. McCann,et al.  A survey of autonomic computing—degrees, models, and applications , 2008, CSUR.

[6]  Ehab Al-Shaer,et al.  Modeling and Management of Firewall Policies , 2004, IEEE Transactions on Network and Service Management.

[7]  Emil C. Lupu,et al.  Conflicts in Policy-Based Distributed Systems Management , 1999, IEEE Trans. Software Eng..

[8]  Sabrina De Capitani di Vimercati,et al.  Expressive and Deployable Access Control in Open Web Service Applications , 2011, IEEE Transactions on Services Computing.

[9]  Morris Sloman,et al.  Policy driven management for distributed systems , 1994, Journal of Network and Systems Management.