Constraint Analysis for Security Policy Partitioning Over Tactical Service Oriented Architectures

Vasileios Gkioulos, Stephen Wolthusen

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Tactical networks are typically of an ad-hoc nature operating in highly restricted environments and constrained resources. The frequent presence of communication disruptions and network partitioning must also be expected and managed, while core functionalities must be maintained, providing asynchronous invocation and access to services in a distributed manner. Supporting the required functionalities of the contemporary tactical environment, requires the dynamic evaluation of security policies, incorporating semantic knowledge from various network layers, together with facts and rules that are defined axiomatically a priori. However, the required basis for such policy decisions can be excessively extended and dynamic. Thus, it is desirable to locally minimize the scope of the policy maximizing efficiency. In this paper, we therefore analyze criteria and optimization goals for the a priori distribution and partitioning of security policies, ensuring the continuous support of the required capabilities, given the operational tasks of each deployed actor.
Original languageEnglish
Title of host publicationAdvances in Network Systems
Subtitle of host publicationArchitectures, Security, and Applications
PublisherSpringer-Verlag
Pages149-166
Number of pages18
Volume461
EditionAISC
ISBN (Electronic)978-3-319-44354-6
ISBN (Print)978-3-319-44352-2
DOIs
Publication statusE-pub ahead of print - 25 Dec 2016

Publication series

NameAdvances in Intelligent Systems and Computing
PublisherSpringer
ISSN (Print)2194-5357

Cite this