Achieving Interoperability in a Multiple-Security- Policies Environment

The interoperability problems that emerge when information systems cooperate, are often attributed to incompatible security policies. In this paper, we introduce a systemic framework for achieving interoperability when multiple security policies are employed. First, we present a Metapolicy Developme...

Full description

Saved in:
Bibliographic Details
Published in:Computers & security 2000-01, Vol.19 (3), p.267-281
Main Authors: Kokolakis, S.A., Kiountouzis, E.A.
Format: Article
Language:English
Subjects:
Cybersecurity
information security
information security metapolicies
information security policies
Information systems
Interoperability
Policy making
Software
Studies
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The interoperability problems that emerge when information systems cooperate, are often attributed to incompatible security policies. In this paper, we introduce a systemic framework for achieving interoperability when multiple security policies are employed. First, we present a Metapolicy Development System (MDS) for the resolution of interoperability problems caused by incompatible security policies. Then we provide a policy framework and a metapolicy framework to serve as conceptual devices in the application of the MDS. Finally, we examine the possibility of developing software tools to support the MDS. We argue that a policy repository may serve as the basic component of a software tool for the management of multiple security policies and the application of the MDS. The policy repository is implemented in Telos, an object-oriented knowledge representation language.
ISSN:0167-4048
1872-6208
DOI:10.1016/S0167-4048(00)88615-0