Technical reports:
The Zodiac Policy Subsystem: A Policy-Based Management System for a High-Security MANET
Yuu-Heng Cheng; D. Scott Alexander; Alex Poylisher; Mariana Petrova Raykova; Steven Michael Bellovin
Downloads:
- Title:
- The Zodiac Policy Subsystem: A Policy-Based Management System for a High-Security MANET
- Author(s):
-
Cheng, Yuu-Heng
Alexander, D. Scott
Poylisher, Alex
Raykova, Mariana Petrova
Bellovin, Steven Michael - Date:
- 2009
- Type:
- Technical reports
- Department:
- Computer Science
- Permanent URL:
- http://hdl.handle.net/10022/AC:P:9284
- Series:
- Columbia University Computer Science Technical Reports
- Part Number:
- CUCS-023-09
- Publisher:
- Department of Computer Science, Columbia University
- Publisher Location:
- New York
- Abstract:
- Zodiac (Zero Outage Dynamic Intrinsically Assurable Communities) is an implementation of a high-security MANET, resistant to multiple types of attacks, including Byzantine faults. The Zodiac architecture poses a set of unique system security, performance, and usability requirements to its policy-based management system (PBMS). In this paper, we identify theses requirements, and present the design and implementation of the Zodiac Policy Subsystem (ZPS), which allows administrators to securely specify, distribute and evaluate network control and system security policies to customize ZODIAC behaviors. ZPS uses the Keynote language for specifying all authorization policies. We also present a simple extension of the Keynote language to support obligation policies.
- Subject(s):
- Computer science
- Item views:
- 166