A Knowledge-Based Repository Model for Security Policies Management
Most organizations currently build customized security policies by extending the principles and guidelines suggested by generic security policies. This method cannot guarantee that the resulting policies are compatible, neither it can ensure that the resulting protection levels are equivalent. We introduce a Security Policies Repository (SPR), which consists of a knowledge base, storing multiple security policies in a structured way. The SPR facilitates the juxtaposition of security policies, in order to detect, analyze, and resolve conflicts, and to compare and negotiate the protection level of each of the co- operating information systems. Reconciliation of security policies is achieved by means of developing mutually accepted meta-policies.
KeywordsInformation System Security Policy Conflict Detection Security Domain Security Officer
Unable to display preview. Download preview PDF.
- 4.Lupu, E., Sloman, M.: Conflicts in policy-based distributed systems management. IEEE Transactions of Software Engineering 25(6) (1999)Google Scholar
- 7.Jeusfeld, M., Jarke, M., Nissen, H., Staudt, M.: ConceptBase: Managing conceptual models about information systems. In: Berns, et al. (eds.) Handbook of Architectures of Information Systems. Springer, Heidelberg (1998)Google Scholar
- 8.Gangopadhyay, D., Barsalou, T.: On the semantic equivalence of heterogeneous populations in multimodel, multidatabase systems. SIGMOD Record 20(4) (1991)Google Scholar
- 10.Sheth, A., Larson, J.: Federated database systems for managing distributed, heterogeneous and autonomous databases. ACM Computing Surveys 22(3) (1990)Google Scholar