Title :
Multidimensional security policy management for dynamic coalitions
Author :
Patz, Geva ; Condell, Matthew ; Krishnan, Rajesh ; Sanchez, Luis
Author_Institution :
BBN Technol., Cambridge, MA, USA
Abstract :
Security policy management for a dynamic coalition with multiple members, each with its own policy requirements and mechanisms, and with limited mutual trust, is a complex task. In this paper, we present the architecture of MSME (Multidimensional Security Management and Enforcement), a system that addresses this problem by providing mechanisms to express security requirements for large groups abstractly, to exchange and reconcile these communication requirements among members of a group, and to automatically bind these abstract requirements to mechanisms that can enforce them at different levels of the TCP/IP stack
Keywords :
telecommunication security; transport protocols; MSME; TCP/IP stack; abstract requirements binding; communication requirements; dynamic coalitions; multidimensional security enforcement; multidimensional security policy management; mutual trust; security requirements; Concrete; Contracts; Information security; Laboratories; Monitoring; Multidimensional systems; Prototypes; TCPIP; Technology management;
Conference_Titel :
DARPA Information Survivability Conference & Exposition II, 2001. DISCEX '01. Proceedings
Conference_Location :
Anaheim, CA
Print_ISBN :
0-7695-1212-7
DOI :
10.1109/DISCEX.2001.932158
