Advertisement

Modality Conflict Discovery for SOA Security Policies

  • Bartosz Brodecki
  • Jerzy Brzeziński
  • Piotr Sasak
  • Michał Szychowiak
Part of the Lecture Notes in Computer Science book series (LNCS, volume 6965)

Abstract

This paper considers the problem of modality conflicts in security policies for Service-Oriented Architecture (SOA) environments. We describe the importance of this problem and present an algorithm for discovering modality conflicts with low overhead. Often being of large scale and compound structure, SOA systems can definitely benefit from that efficiency boost. Another advantage of the proposal over previously developed algorithms is its formal proof of correctness, also presented in this paper.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Lupu, E., Sloman, M.: Conflicts in policy-based distributed systems management. IEEE Transactions on Software Engineering 25, 852–869 (1999)CrossRefGoogle Scholar
  2. 2.
    Abassi, R., Fatmi, S.G.E.: Dealing with multi security policies in communication networks. In: 5th International Conference on Networking and Services, pp. 282–287 (April 2009)Google Scholar
  3. 3.
    Al-Shaer, E., Hamed, H.: Modeling and management of firewall policies. IEEE Transactions on Network and Service Management 1, 2–10 (2004)CrossRefGoogle Scholar
  4. 4.
    Baboescu, F., Varghese, G.: Fast and scalable conflict detection for packet classifiers. In: 10th IEEE International Conference on Network Protocols, pp. 270–279. IEEE Comput. Soc., Los Alamitos (2002)Google Scholar
  5. 5.
    Craven, R., Lobo, J., Lupu, E., Russo, A., Sloman, M., Bandara, A.: A Formal Framework for Policy Analysis (2008)Google Scholar
  6. 6.
    Brodecki, B., Sasak, P., Szychowiak, M.: Security policy definition framework for SOA-based systems. In: Vossen, G., Long, D.D.E., Yu, J.X.Y. (eds.) WISE 2009. LNCS, vol. 5802, pp. 589–596. Springer, Heidelberg (2009)CrossRefGoogle Scholar
  7. 7.
    Moffett, J.D., Sloman, M.S.: Policy conflict analysis in distributed system management. Journal of Organizational Computing 4, 1–22 (1994)CrossRefGoogle Scholar
  8. 8.
    Brodecki, B., Szychowiak, M.: Conflict discovery algorithns used in ORCA. Technical Report TR-ITSOA-OB8-4-PR-11-03, Institute of Computing Science, Pozna University of Technology (2011)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • Bartosz Brodecki
    • 1
  • Jerzy Brzeziński
    • 1
  • Piotr Sasak
    • 1
  • Michał Szychowiak
    • 1
  1. 1.Poznań University of TechnologyPoznańPoland

Personalised recommendations