A Flexible, Model-driven Security Framework for Distributed Systems

U. Lang and R. Schreiner (UK)


Policy, access control, distributed systems, model-driven architecture.


The proliferation of different distributed systems platforms and security technologies complicates the integration of distributed applications and the migration of existing applications to new technologies. Model driven software development tries to tackle this problem by modeling the application logic undistorted by technology and mapping the model to the technology. Distributed systems security faces a similar problem in that there are many different platforms and security technologies that need to be integrated. This paper shows how the concepts of model driven software engineering can be applied to security. We present our flexible, model-driven security framework where a technology independent abstract representation of the security policy is stored in a policy repository, which is integrated with the underlying platform and security technology in a well defined and flexible manner.

Important Links:

Go Back