Deploy, Adjust and Readjust: Supporting Dynamic Reconfiguration of Policy Enforcement - Middleware 2011
Conference Papers Year : 2011

Deploy, Adjust and Readjust: Supporting Dynamic Reconfiguration of Policy Enforcement

Abstract

For large distributed applications, security and performance are two requirements often difficult to satisfy together. Addressing them separately leads more often to fast systems with security holes, rather than secure systems with poor performance. For instance, caching data needed for security decisions can lead to security violations when the data changes faster than the cache can refresh it. Retrieving such fresh data without caching it impacts performance. In this paper, we analyze a subproblem: how to dynamically configure a distributed authorization system when both security and performance requirements change. We examine data caching, retrieval and correlation, and propose a runtime management tool that, with external input, finds and enacts the customizations that satisfy both security and performance needs. Preliminary results show it takes around two seconds to find customization solutions in a setting with over one thousand authorization components.
Fichier principal
Vignette du fichier
978-3-642-25821-3_18_Chapter.pdf (632.14 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01597755 , version 1 (28-09-2017)

Licence

Identifiers

Cite

Gabriela Gheorghe, Bruno Crispo, Roberto Carbone, Lieven Desmet, Wouter Joosen. Deploy, Adjust and Readjust: Supporting Dynamic Reconfiguration of Policy Enforcement. 12th International Middleware Conference (MIDDLEWARE), Dec 2011, Lisbon, Portugal. pp.350-369, ⟨10.1007/978-3-642-25821-3_18⟩. ⟨hal-01597755⟩
61 View
109 Download

Altmetric

Share

More