Προσαρμοστική διαχείριση ασφάλειας βάσει πολιτικών
Adaptive policy-based security management
View/ Open
Keywords
Διαχείριση δικτύων με βάση την πολιτική ; Επιβολή πολιτικής ; Μηχανή πολιτικής ; Πολιτικές ασφαλείας ; Έλεγχος πρόσβασης ; Διαχείριση πρόσβασης ; Αυθεντικοποίηση ; Δυναμικές εξουσιοδοτήσεις ; Ενσωματωμένος διαχειριστής συμβάντων ; Προσαρμοστική δρομολόγηση ; Δρομολόγηση QoS ; Επικοινωνίες M2M ; Σύννεφο υπολογιστών ; Αρχιτεκτονικές προσανατολισμένες προς υπηρεσίες ; Δυνατότητες προσανατολισμένες προς υπηρεσίες ; Τομέας υπηρεσιών ; SLA ; Policy-based network management ; Policy enforcement ; Policy engine ; Security policy ; Access control ; Access management ; Authentication ; Embedded event manager ; Adaptive QoS routing ; M2M communication ; Cloud computing ; Service oriented architecture ; Service oriented capabilities ; Service domainAbstract
In the recent years, Machine-to-Machine (M2M) communications and applications have increased dramatically, comprising several devices and nodes with distinctive features and diverse technical capabilities. The selection of the appropriate components (e.g. waterresistance/anti-vibration/dust-proof/GPS-enabled nodes) plays a significant role in the operations and performance of the final M2M solution in a resource-constrained environment and needs to address the inclusion of fundamental factors like low-power consumption, device battery life, available connection speed and localized management. In terms of the M2M communication protocols, the M2M environments need to support cross-domain information exchanges among several smart interconnected nodes. These exchanges complicate the operations of the routing, the management protocols, the M2M communication services and the device reach-ability, which all of them result in various security and performance issues.
The proposed architecture supports the ability to scale operations and meet different demand or capacity levels among a large population of heterogeneous smart objects, applications and services. The performance is increased with higher technology diversity and independence between the dynamic authorisation, the policy-based management and the Service-Oriented Computing (SOC) services. In this work, various scenarios are demonstrated to uncover the capabilities of the proposed architecture, unfold the improvements, develop and evaluate a policy-based QoS management model for adaptive routing, reinforce the SOA policy-based methods for access control services, address the service challenges in M2M communications and tackle the security aspects with dynamic access control mechanisms. Finally, the architecture also establishes an integrated access control model for adaptive security management.