A flexible architecture for enforcing and composing policies in a service-oriented environment

Authors:
Tom Goovaerts;Bart De Win;Wouter Joosen
Affiliations:
DistriNet Research Group, Katholieke Universiteit Leuven, Leuven, Belgium;DistriNet Research Group, Katholieke Universiteit Leuven, Leuven, Belgium;DistriNet Research Group, Katholieke Universiteit Leuven, Leuven, Belgium
Venue:
DAIS'07 Proceedings of the 7th IFIP WG 6.1 international conference on Distributed applications and interoperable systems
Year:
2007

Citing 11
Cited 1

Aspect-oriented programming

ACM Computing Surveys (CSUR) - Special issue: position statements on strategic directions in computing research
Enforceable security policies

ACM Transactions on Information and System Security (TISSEC)
Access control with IBM Tivoli access manager

ACM Transactions on Information and System Security (TISSEC)
A Resource Access Decision Service for CORBA-Based Distributed Systems

ACSAC '99 Proceedings of the 15th Annual Computer Security Applications Conference
KAoS Policy and Domain Services: Toward a Description-Logic Approach to Policy Representation, Deconfliction, and Enforcement

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
A Policy Language for a Pervasive Computing Environment

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Introduction: Service-oriented computing

Communications of the ACM - Service-oriented computing
Hybrid aspects for weaving object-oriented functionality and rule-based knowledge

Proceedings of the 3rd international conference on Aspect-oriented software development
Connecting client objectives with resource capabilities: an essential component for grid service managent infrastructures

Proceedings of the 2nd international conference on Service oriented computing
Composing security policies with polymer

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
Integrating Security Policies via Container Portable Interceptors

IEEE Distributed Systems Online

Enforcing UCON policies on the enterprise service bus

OTM'10 Proceedings of the 2010 international conference on On the move to meaningful internet systems: Part II

Quantified Score

Hi-index	0.00

Visualization

Abstract

Service Oriented Architectures (SOA's) enable powerful application and end user service composition from independently defined services. The effective deployment of such composed services requires adaptation of and interoperability between services. This challenge can be approached by specifying service composition in policies, and by enforcing these policies in a sophisticated run-time architecture. In this paper, we present an open architecture for enforcing and composing complex policies that can depend on the available services in the environment. Complex polices have typically been studied in the context of policy languages, yet they have never been fully supported in a SOA-based execution environment. We have created a flexible run-time architecture that maximizes interoperability, adaptability and evolution. We have prototyped our architecture on an Enterprise Service Bus and we illustrate how our solution supports realistic and complex policies.