A Comparative Study of Policy Specification Languages for Secure Distributed Applications
DSOM '02 Proceedings of the 13th IFIP/IEEE International Workshop on Distributed Systems: Operations and Management: Management Technologies for E-Commerce and E-Business Applications
A Logic-Based Policy Definition Language for Network Management
LCN '01 Proceedings of the 26th Annual IEEE Conference on Local Computer Networks
A Policy-Based Approach to Personalization of Communication over Converged Networks
POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
A Policy Based QoS Management System for the IntServ/DiffServ Based Internet
POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
From dynamic IP transport service ordering to DiffServ network configuration
Computer Networks: The International Journal of Computer and Telecommunications Networking - Special issue: Management of IT services
Analysis of policy management models and specification languages
Network control and engineering for Qos, security and mobility II
A new policy-aware terminal for QoS, AAA and mobility management
International Journal of Network Management
Policies, grids and autonomic computing
DEAS '05 Proceedings of the 2005 workshop on Design and evolution of autonomic application software
A policy management framework for flow distribution on multihomed end nodes
Proceedings of 2nd ACM/IEEE international workshop on Mobility in the evolving internet architecture
A policy management framework for content-based publish/subscribe middleware
Proceedings of the ACM/IFIP/USENIX 2007 International Conference on Middleware
A policy management framework for content-based publish/subscribe middleware
MIDDLEWARE2007 Proceedings of the 8th ACM/IFIP/USENIX international conference on Middleware
A high-level policy description language for the network ACL
PDCAT'04 Proceedings of the 5th international conference on Parallel and Distributed Computing: applications and Technologies
Semantic-Based policy engineering for autonomic systems
WAC'04 Proceedings of the First international IFIP conference on Autonomic Communication
Dynamic policy management framework for partial policy information
EGC'05 Proceedings of the 2005 European conference on Advances in Grid Computing
IPOM'05 Proceedings of the 5th IEEE international conference on Operations and Management in IP-Based Networks
Multi-constraint security policies for delegated firewall administration
International Journal of Network Management
PCIEF: a policy conflict identification and evaluation framework
International Journal of Information and Computer Security
Policy-based flow control for multi-homed mobile terminals with IEEE 802.11u standard
Computer Communications
| Hi-index | 0.00 |
A survey of current network policy languages is presented. Next, a summary of the techniques for detecting policy conflicts is given. Finally, a new language, path-based policy language, which offers improvements to these is introduced. Previous network policy languages vary from the very specific, using packet filters at the bit level, to the more abstract where concepts are represented, with implementation details left up to individual network devices. As background information a policy framework model and policy-based routing protocols are discussed. The PPL's path-based approach for representing network policies is advantageous in that quality of service and security policies can be associated with an explicit path through the network. This assignment of policies to network flows aids in new initiatives such as integrated services. The more stringent requirement of supporting path-based policies can easily be relaxed with the use of wild card characters to also support differentiated services and best-effort service, which is provided by the Internet today