Policy refinement: Decomposition and operationalization for dynamic domains

We describe a method for policy refinement. The refinement process involves stages of decomposition, operationalization, deployment and re-refinement, and operates on policies expressed in a logical language flexible enough to be translated into many different enforceable policy dialects. We illustrate with examples from a coalition scenario, and describe how the stages of decomposition and operationaliztion work internally, and fit together in an interleaved fashion. Domains are represented in a logical formalization of UML diagrams. Both authorization and obligation policies are supported.

[1]  Jorge Lobo,et al.  Expressive policy analysis with enhanced system dynamicity , 2009, ASIACCS '09.

[2]  Brendan Jennings,et al.  Conflict Prevention Via Model-Driven Policy Refinement , 2006, DSOM.

[3]  Paris Flegkas,et al.  A Functional Solution for Goal-Ooriented Policy Refinement , 2006, Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06).

[4]  Andreas Matheus,et al.  How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML) , 2005, Proceedings of the 38th Annual Hawaii International Conference on System Sciences.

[5]  Dinesh C. Verma,et al.  Policy transformation techniques in policy-based systems management , 2004, Proceedings. Fifth IEEE International Workshop on Policies for Distributed Systems and Networks, 2004. POLICY 2004..

[6]  G.A. Campbell,et al.  Goals and Policies for Sensor Network Management , 2008, 2008 Second International Conference on Sensor Technologies and Applications (sensorcomm 2008).

[7]  Jorge Lobo,et al.  Security policy refinement using data integration: a position paper , 2009, SafeConfig '09.

[8]  Axel van Lamsweerde,et al.  Formal refinement patterns for goal-driven requirements elaboration , 1996, SIGSOFT '96.

[9]  Emil C. Lupu,et al.  The Ponder Policy Specification Language , 2001, POLICY.

[10]  Martín Abadi,et al.  The Existence of Refinement Mappings , 1988, LICS.

[11]  Jorge Lobo,et al.  Decomposition techniques for policy refinement , 2010, 2010 International Conference on Network and Service Management.

[12]  Fen Liu,et al.  ChangeRefinery: Assisted Refinement of High-Level IT Change Requests , 2009, 2009 IEEE International Symposium on Policies for Distributed Systems and Networks.

[13]  Jorge Lobo,et al.  Policy refinement of network services for MANETs , 2011, 12th IFIP/IEEE International Symposium on Integrated Network Management (IM 2011) and Workshops.

[14]  Alessandra Russo,et al.  A goal-based approach to policy refinement , 2004, Proceedings. Fifth IEEE International Workshop on Policies for Distributed Systems and Networks, 2004. POLICY 2004..