Ismene: Provisioning and Policy Reconciliation in Secure Group Communication

Abstract

Group communication systems increasingly provide security services. However, in practice, the use of such systems is complicated by the divergent requirements and abilities of group members. In this paper, we define a policy language called Ismene that directs the provisioning of security-related resources at member sites. The communication service is defined through a reconciliation of a group policy and member's local policies into a security configuration. Group authorization and access control appropriate for the operating conditions and session configuration are also defined within the policy. The use of Ismene policies to define security is illustrated through an extended example of a group application built on the prototype Ismene framework.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2000
Accession Number
ADA459520

Entities

People

  • Atul Prakash
  • Patrick Drew McDaniel

Organizations

  • University of Michigan

Tags

Communities of Interest

  • C4I

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Authentication
  • Communication Systems
  • Computer Access Control
  • Computer Programs
  • Computer Science
  • Computers
  • Control Systems
  • Electrical Engineering
  • Engineering
  • Information Security
  • Language
  • Law
  • Security
  • Specifications
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Adaptive Control and Estimation with Uncertainty in Dynamic Systems.
  • Agent-Based Social Robotics and Mobile-Assisted Learning in Virtual Environments.
  • Cybersecurity.