The Imposition of Protocols Over Open Distributed Systems
IEEE Transactions on Software Engineering
A role-based access control model and reference implementation within a corporate intranet
ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Supporting relationships in access control using role based access control
RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
Conflicts in Policy-Based Distributed Systems Management
IEEE Transactions on Software Engineering
Law-governed interaction: a coordination and control mechanism for heterogeneous distributed systems
ACM Transactions on Software Engineering and Methodology (TOSEM)
The Ponder Policy Specification Language
POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
Author Obliged to Submit Paper before 4 July: Policies in an Enterprise Specification
POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
Law-Governed Internet Communities
COORDINATION '00 Proceedings of the 4th International Conference on Coordination Languages and Models
The Authorization Service of Tivoli Policy Director
ACSAC '01 Proceedings of the 17th Annual Computer Security Applications Conference
Formal Treatment of Certificate Revocation Under Communal Access Control
SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
Have It Your Way: Personalization of Network-Hosted Services
BNCOD 19 Proceedings of the 19th British National Conference on Databases: Advances in Databases
Regulating Work in Digital Enterprises: A Flexible Managerial Framework
On the Move to Meaningful Internet Systems, 2002 - DOA/CoopIS/ODBASE 2002 Confederated International Conferences DOA, CoopIS and ODBASE 2002
Rule-Based Building-Block Architectures for Policy-Based Networking
Journal of Network and Systems Management
An architecture for autonomic management of ambient networks
AN'06 Proceedings of the First IFIP TC6 international conference on Autonomic Networking
| Hi-index | 0.00 |
This paper is part of a research program based on thethesis that the only reliable way for ensuring that a heterogeneousdistributed community of software modules andpeople conforms to a given policy is for this policy to be enforced.We have devised a mechanism called law-governedinteraction (LGI) for this purpose. As has been demonstratedin previous publications, LGI can be used to specifya wide range of policies to govern the interactions amongthe members of large and heterogeneous communities ofagents dispersed throughout a distributed enterprise, and toenforce such policies in a decentralized and efficient manner.What concerns us in this paper is the fact that a typicalenterprise is bound to be governed by a multitude of policies.Such policies are likely to be interrelated in complexways, forming an ensemble of policies that is to govern theenterprise as a whole. As a step toward organizing suchan ensemble of policies, we introduce in this paper a hierarchicalinter-policy relation called superior/subordinate.This relation is intended to serve two distinct, if related,purposes. First, it is to help organize and classify a set ofenterprise policies. Second, this relation is to help regulatethe long term evolution of the various policies that governan enterprise. For this purpose, each policy in the hierarchyshould circumscribe the authority and the structure ofpolicies subordinate to it, in some analogy to the manner inwhich a constitution in American jurisprudence constrainsthe laws subordinate to it. Broadly speaking, the hierarchicalstructure of the ensemble of policies that govern a givenenterprise is to reflect the hierarchical structure of the enterpriseitself.