ASPF: A Policy Administration Framework for Self-Protection of Large-Scale Systems

He, Ruan; Lacoste, Marc; Leneutre, Jean

Home // International Journal On Advances in Security, volume 3, numbers 3 and 4, 2010 // View article

ASPF: A Policy Administration Framework for Self-Protection of Large-Scale Systems

Authors:
Ruan He
Marc Lacoste
Jean Leneutre

Keywords: Autonomic Computing, Self-Protection, Policy Management, Authorization, Pervasive Networks

Abstract:
Despite its potential to tackle many security challenges of large-scale systems such as pervasive networks, self-managed protection has been little explored. This paper addresses the problem from a policy management perspective by presenting a policy-driven framework for self-protection of pervasive systems called ASPF (Autonomic Security Policy Framework). Enforced authorization policies in a device are adapted according to the security context, both at the network and device levels. ASPF describes how an autonomic security manager may control OS-level authorization mechanisms supporting multiple classes of policies. Evaluation of an ASPF implementation shows that the framework enables effective self-protection of pervasive systems. ASPF is also applicable for autonomic security management of other types of large-scale infrastructures such as cloud environments.

Pages: 104 to 122

Publication date: April 6, 2011

Published in: journal

ISSN: 1942-2636