Implementation and Realization of Network Security Policy Based on Rule Engine

In order to solve the implementation and realization efficiency problem of the network information system security policy, an improved object-oriented Rete algorithm and its network structure model are proposed, and on this basis, the rule engine is introduced, where the implementation and realization steps and efficiency analysis are given. Result shows that the algorithm and network structure can effectively improve the efficiency of system enforcement and realization. The technology can be adapted to establishing and controlling the policy service in the extensive network environment.

[1]  Emil C. Lupu,et al.  Conflict Analysis for Management Policies , 1997, Integrated Network Management.

[2]  Morris Sloman,et al.  Policy Conflict Analysis in Distributed System Management , 1994 .

[3]  Minsoo Kim,et al.  Fast Service Selection Using rete Network in Dynamic Environment , 2009, 2009 Congress on Services - I.

[4]  Charles L. Forgy,et al.  Rete: A Fast Algorithm for the Many Patterns/Many Objects Match Problem , 1982, Artif. Intell..

[5]  J. Barata,et al.  Evolvable production systems , 2009, 2009 IEEE International Symposium on Assembly and Manufacturing.

[6]  Li Lian COMP: an efficient multi-pattern/multi-object match algorithm , 2001 .

[7]  Shaochun Zhong,et al.  The Rete Algorithm Improvement and Implementation , 2008, 2008 International Conference on Information Management, Innovation Management and Industrial Engineering.

[8]  Allen Newell,et al.  The efficiency of certain production system implementations , 1977, SGAR.

[9]  Jorge Lobo,et al.  Realizing Network Control Policies Using Distributed Action Plans , 2003, Journal of Network and Systems Management.

[10]  Donald A. Waterman,et al.  Pattern-Directed Inference Systems , 1981, IEEE Transactions on Pattern Analysis and Machine Intelligence.

[11]  Charles L. Forgy,et al.  Rete: a fast algorithm for the many pattern/many object pattern match problem , 1991 .

[12]  Eberhard Blümel Virtual Development, Testing and Learning Platforms for the Integrated Development of Products and Production Systems , 2008, WETICE.

[13]  Brian L. Cohen,et al.  A Powerful and Efficient Structural Pattern Recognition System , 1977, Artif. Intell..

[14]  Allen Newell,et al.  THE EFFICIENCY OF CERTAIN PRODUCTION SYSTEM IMPLEMENTATIONS1 , 1978 .