Policy Transformation

Transform high level policies into low level policies using rule based transformation. Examples:

• Input policy
  
  • If user is from U.S. then provide high security
  
  
• Transformation rules
  
  • Replace U.S. with subnet 9.2.x.x
  
  
  • Replace high security with 256 bit encryption and DES ncryption
  
  
• Output Policy
  
  • If user is from subnet 9.2.x.x Then use 256 bit encryption and DES encryption

Policy Deployment

In one of our scenarios we are working with Self-Managed Cells (SMC) resources:

• SMCs are agents built using the Ponder2 policy framework developed at Imperial College (UK)


• SMC policy service - Ponder2 framework
  • 
    Two types of policies:
    • Obligation policies (event-condition-action) define management actions performed in response to events.
    
    
    • Authorization policies specify which actions are permitted on which resources and services.
    
    
  • Managed objects to which policies apply can be:
    
    
    • Internal resources
    
    
    • Adapters for external services
    
    
    • Policies themselves