Abstract
This paper proposes the use of Allomorphism for the access control service in OSI management environment, with no Access Control Function implementation (ISO10164-9, 1990), which is responsible for this service. The Allomorphism is a powerful SMI resource that makes the OSI Model very strong and flexible. This strategy reduces the overhead introduced by the access control function on OSI management systems without expose the management to arbitrary use of its resources. The Allomorphism allows to define different access views to the management resources according to security requirements. In this context, this work presents the security requirements in networks management systems, the OSI Access Control Function Model and its disadvantages, the idea of Allomorphism and, finally, how to implement it to access control.
Keywords
Download to read the full chapter text
Chapter PDF
Similar content being viewed by others
References
CCITT X.720. (1992) CCITT - Recommendation X.720 - Information Thecnology - Open Systems Interconnection - Structure of Management Information: Management Information Model.
CCITT X.722. (1992) CCITT - Recommendation X.722 - Information Thecnology - Open Systems Interconnection - Structure of Management Information: Guidelines for the Definition of Managed Objects.
ISO7498–4. (1989) ISO/IEC 7498–4 - Information Processing Systems - Open Systems Interconnection - Basic Reference Model - Part 4: Management Framework.
ISO10164–7. (1991) ISO/IEC DIS 10164–7 - Information Technology - Open Systems Interconnection - Systems of Management - Part 7: Security Alarm Reporting Function.
ISO10164–8. (1990) ISO/IEC DIS 10164–8 - Information Technology - Open Systems Interconnection - Systems of Management - Part 8: Security Audit Trail Function.
ISO10164–9. (1991) ISO/IEC CD 10164–9 - Information Technology - Open Systems Interconnection - Systems of Management - Part 9: Objects and Attributes for Access Control.
ISO10165–1. (1991) ISO/IEC DIS 10165–1 - Information Thecnology - Open Systems Interconnection - Structure of Management Information: Management Information Model.
ISO10165–2. (1989) ISO/IEC DIS 10165–2 - Information Thecnology - Open Systems Interconnection - Structure of Management Information: Definition of Management Information Model.
ISO10165–3. (1989) ISO/IEC DIS 10165–3 - Information Thecnology - Open Systems Interconnection - Structure of Management Information: Definitions of Management Attributes.
ISO10165–4. (1991) ISO/IEC DIS 10165–4 - Information Thecnology - Open Systems Interconnection - Structure of Management Information: Guidelines for the Definition of Managed Object.
KLERER, M. (1993) Systen Management Information Modeling, IEEE Communications Magazine.
DE LUCCA, J. E. (1994) Arquitetura para Segurança em Gerência de Redes, Trabalho Individual - CPGCC UFSC, Santa Catarina.
PAVLOU, G. et al. (1993) A Generic Management Information Base Browser, The ISO Development Environment,Versâo 8.0, University College London.
RAMOS, A. M. (1994) Interface de Controle de Acesso para o Modelo de Gerenciamento OSI, Dissertaçâo de Mestrado - CPGCC UFSC, Santa Catarina.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1997 Springer Science+Business Media Dordrecht
About this chapter
Cite this chapter
Ramos, A.M., Specialski, E.S. (1997). The use of allomorphism for the access control service in OSI management environment. In: Lazar, A.A., Saracco, R., Stadler, R. (eds) Integrated Network Management V. IM 1997. IFIP — The International Federation for Information Processing. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35180-3_9
Download citation
DOI: https://doi.org/10.1007/978-0-387-35180-3_9
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-5519-0
Online ISBN: 978-0-387-35180-3
eBook Packages: Springer Book Archive