Abstract | ||
---|---|---|
This paper discusses the implementation of security policies in multipolicy systems. Multipolicy systems are systems supporting a multitude of security policies, each policy governing the applications within its own and precisely defined security domain.The paper argues that within multipolicy systems, traditional approaches for implementing security policies such as security kernels are both too weak and too strong. In order to support this thesis, we will discuss architectural issues of the implementation of policy separation, policy persistency, total mediation and putting off-the-shelf applications under the control of security policies. Whenever our statements are illustrated by examples, these examples are taken from a case study we implemented for the OSF Distributed Computing Environment. |
Year | DOI | Venue |
---|---|---|
1999 | 10.1145/311094.311105 | Operating Systems Review |
Keywords | Field | DocType |
micro-kernel,dce,policy domain,policy persistency,off-the-shelf application,reference monitor,computing environment,case study,policy separation,custodian,multipolicy system,security kernel,information domain,security policy,distributed computing environment,architectural issue,security domain,embedding security policy | Security convergence,Security through obscurity,Network security policy,Computer security,Computer science,Information security standards,Security service,Real-time computing,Cloud computing security,Security information and event management,Computer security model | Journal |
Volume | Issue | Citations |
33 | 2 | 4 |
PageRank | References | Authors |
0.51 | 14 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Udo Halfmann | 1 | 4 | 0.51 |
Winfried E. Kühnhauser | 2 | 55 | 15.07 |