Presentation is loading. Please wait.

Presentation is loading. Please wait.

POSTECH DP & NM Lab. (1)(1) 1999. 9. 7 POWER Prototype (1)(1) POWER Prototype : Towards Integrated Policy-based Management Mi-Joung Choi

Published byMerilyn Quinn Modified over 8 years ago

Similar presentations

Presentation on theme: "POSTECH DP & NM Lab. (1)(1) 1999. 9. 7 POWER Prototype (1)(1) POWER Prototype : Towards Integrated Policy-based Management Mi-Joung Choi"— Presentation transcript:

1 POSTECH DP & NM Lab. (1)(1) 1999. 9. 7 POWER Prototype (1)(1) POWER Prototype : Towards Integrated Policy-based Management Mi-Joung Choi mjchoi@postech.ac.kr DP&NM

2 POSTECH DP & NM Lab. (2)(2) 1999. 9. 7 POWER Prototype Contents Introduction Issues and Design objectives Prerequisite concepts Architecture –PTL, ISM, PWE, GUI, Deployable policies database, Device mapper, Expert policy writer, Policy deployer Implementation Summary & Future work References

3 POSTECH DP & NM Lab. (3)(3) 1999. 9. 7 POWER Prototype Introduction A policy-based management system is useful Only discussed in the literature, but not realized POWE RPOlicy Wizard Engine for Refinement –an integrated policy authoring environment developed as a realization of the policy concepts –POWER prototype : demonstrate a way towards making policy- based management system a reality in practice –Find a solution for the problem of transforming an abstract policy to implementable configuration

4 POSTECH DP & NM Lab. (4)(4) 1999. 9. 7 POWER Prototype Issues and Design objectives Issues –Have deep understanding of both the business level policy and domain specific knowledge such as security or network QoS –Construct a policy by using accurate syntax in addition to having precise semantics Design objectives –The business-driven policy maker should be shielded from the need to have deep domain-specific technical knowledge –Using the same system, a business level(abstract) policy can be expressed as easily as the device level(configuration) policy

5 POSTECH DP & NM Lab. (5)(5) 1999. 9. 7 POWER Prototype Prerequisite Concepts Policy : the constraints and preferences on the state of a system Refinement consists of two aspects –refinement of policy context by making constraints more specific –refinement of objects used in the policy Identifying the user category : Expert & Consultant –Expert : the person with deep domain specific knowledge –Consultant : the person with deep knowledge of business ISM (Information and System Model) –All policy related information is modeled and stored –Models objects and their relationships - hierarchical inheritance or associations

6 POSTECH DP & NM Lab. (6)(6) 1999. 9. 7 POWER Prototype Architecture Policy Wizard Engine Policy Wizard Engine Policy Deployer Policy Deployer Device Mapper Device Mapper Graphical User Interface Graphical User Interface Expert Policy Writer Expert Policy Writer Deployable Policy Deployable Policy Information & System Model Information & System Model Policy Template Library Policy Template Library Managed System

7 POSTECH DP & NM Lab. (7)(7) 1999. 9. 7 POWER Prototype Policy Template Library (PTL) Store a generic policy description that provide information about its refinement to the Policy Wizard Engine A collection of policy template created by the expert Components –Policy Statement : the description of the policy –Policy Context : the description of contextual constraints within which the policy will operate –Informational components : provide extra information to the policy user –Procedural components : embedded process instruction used to drive the “refinement flow” (Ex) People can carry out some operation on specific information.  Engineers cam add entry in a database that belongs to the department.

8 POSTECH DP & NM Lab. (8)(8) 1999. 9. 7 POWER Prototype Information and System Model Implemented using Common Information Model (CIM) Implemented as a set of Prolog statements Object User retiree OrganizationInformation employeefiledepartmentWeb-pageproject Association : “user belongs to department” belongs to

9 POSTECH DP & NM Lab. (9)(9) 1999. 9. 7 POWER Prototype Policy Wizard Engine (PWE) The heart of the Policy Authoring Environment Combination of : –A Prolog inference engine –An interpreter that manipulates a policy template according to the embedded information, provide support to the GUI –A module that interacts with the ISM using a defined API –A module that deals with “deployable policies”

10 POSTECH DP & NM Lab. (10) 1999. 9. 7 POWER Prototype PWE - cont’d Refinement process of PWE –Load policy template from the library –Select a relevant template through the use of a GUI –Interpret the embedded information in the template –Guide the consultant the refinement process  An abstract policy, objects can be made more specific through the selection of its subclass  Legitimate additional constraints can be included as contextual information –Save the policy either for further refinement or for it to be used in deployment

11 POSTECH DP & NM Lab. (11) 1999. 9. 7 POWER Prototype Deployable Policies Database Deployable only when, through the use of the ISM, a set of real world system objects can be found and for which configuration specified The system stores those policies in order to perform two activities: –to be uploaded by the “Policy Deployer” and be deployed –to be available to the consultant or other system modules for further manipulations Have hooks to the real world by referring to entities described in the “Information System Model”

12 POSTECH DP & NM Lab. (12) 1999. 9. 7 POWER Prototype Device Mapper Transforms the information stored in the refinement policy into configuration details Using the information contained in the ISM to convert from a policy description in the form of a policy statement and context containing variables into a series of a system specific function calls (Ex) Access control configuration : represent the relationships between users, operations and resource objects that are to be secured

13 POSTECH DP & NM Lab. (13) 1999. 9. 7 POWER Prototype Other Components GUI : Hides the low-level policy details, Presents an easy and simplified way to a consultant to access system functionality Expert Policy Writer : For the experts to need a good authoring environment in order to create policy templates Policy deployer : Policy Distributor

14 POSTECH DP & NM Lab. (14) 1999. 9. 7 POWER Prototype Implementation : Prototype Create by hand – a set of policy templates which are accessible by the PWE – an information base to represent the data in the ISM containing hierarchies of classes of objects and associations of objects Provide following functions to the consultant via the GUI : –Select policy template set using either keyword combinations or policy categories –Refine through object subclass selection suggested by the PWE –Refine the context suggested by the PWE –Construct another policy from template or ask the system to “deploy” –Output in the form of a configuration file (Deployable Policies)

15 POSTECH DP & NM Lab. (15) 1999. 9. 7 POWER Prototype Summary & future work Integrate policy refinement with policy-based configuration generation Objectives - “multi-use view” using the separation of responsibility for “expert” and “consultant” and enabling easy policy authoring, - the exploitation of prevailing modeling paradigm to enable policy refinement Implement the missing components in the architecture Additional functionality in the PTL & PWE Additional modules to the architecture –consistency and conflict analysis –meta-policies management

16 POSTECH DP & NM Lab. (16) 1999. 9. 7 POWER Prototype Current PBMS Policy Policies Policy Server LDAP Policy Directory Policy Server Policy Management Tools Graphical User Interface

17 POSTECH DP & NM Lab. (17) 1999. 9. 7 POWER Prototype References M. Casassa Mont, A. Baldwin, G. Goh, “POWER Prototype : Towards Integrated Policy-Based Management,” NOMS 2000 Review, 1999. M. Sloman, “Policy Driven Management for Distributed Systems,” Journal of Network and Systems Management, Plenum Press. Vol.2 No.4, 1994, pp333-60.

Download ppt "POSTECH DP & NM Lab. (1)(1) 1999. 9. 7 POWER Prototype (1)(1) POWER Prototype : Towards Integrated Policy-based Management Mi-Joung Choi"

Similar presentations

TU e technische universiteit eindhoven / department of mathematics and computer science Modeling User Input and Hypermedia Dynamics in Hera Databases and.

TU e technische universiteit eindhoven / department of mathematics and computer science Modeling User Input and Hypermedia Dynamics in Hera Databases and.
Database Planning, Design, and Administration

Database Planning, Design, and Administration
Ch:8 Design Concepts S.W Design should have following quality attribute: Functionality Usability Reliability Performance Supportability (extensibility,

Ch:8 Design Concepts S.W Design should have following quality attribute: Functionality Usability Reliability Performance Supportability (extensibility,
Database Systems: Design, Implementation, and Management Tenth Edition

Database Systems: Design, Implementation, and Management Tenth Edition
Software Modeling SWE5441 Lecture 3 Eng. Mohammed Timraz

Software Modeling SWE5441 Lecture 3 Eng. Mohammed Timraz
Introduction to Databases

Introduction to Databases
Object-Oriented Analysis and Design

Object-Oriented Analysis and Design
Chapter 2 Data Models Database Systems: Design, Implementation, and Management, Seventh Edition, Rob and Coronel.

Chapter 2 Data Models Database Systems: Design, Implementation, and Management, Seventh Edition, Rob and Coronel.
Oct 31, 2000Database Management -- Fall 2000 -- R. Larson Database Management: Introduction to Terms and Concepts University of California, Berkeley School.

Oct 31, 2000Database Management -- Fall R. Larson Database Management: Introduction to Terms and Concepts University of California, Berkeley School.
Software Architecture Design Instructor: Dr. Jerry Gao.

Software Architecture Design Instructor: Dr. Jerry Gao.
File Systems and Databases

File Systems and Databases
Requirements Analysis Concepts & Principles

Requirements Analysis Concepts & Principles
Introduction to Databases Transparencies

Introduction to Databases Transparencies
Lecture Nine Database Planning, Design, and Administration

Lecture Nine Database Planning, Design, and Administration
Lecture Two Database Environment Based on Chapter Two of this book:

Lecture Two Database Environment Based on Chapter Two of this book:
Introduction to Software Design Chapter 1. Chapter 1: Introduction to Software Design2 Chapter Objectives To become familiar with the software challenge.

Introduction to Software Design Chapter 1. Chapter 1: Introduction to Software Design2 Chapter Objectives To become familiar with the software challenge.
Mrs. Maninder Kaur 1Maninder Kaur

Mrs. Maninder Kaur 1Maninder Kaur
Architectural Design.

Architectural Design.
These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.

These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.
Database Environment 1.  Purpose of three-level database architecture.  Contents of external, conceptual, and internal levels.  Purpose of external/conceptual.

Database Environment 1.  Purpose of three-level database architecture.  Contents of external, conceptual, and internal levels.  Purpose of external/conceptual.

Similar presentations

Ads by Google