Policy Workshop 2001
29-31 January 2001
HP Laboratories, Bristol, UK

Conference Proceedings

Policies for Distributed Systems and Networks

Sloman, M., Imperial College, London, UK
Lobo, J., Bell Labs, Murray Hill, NJ, USA
Lupu, E.C., Imperial College, London, UK
(Eds.)

Springer Verlag Lecture Notes in Computer Science. VOL. 1995
ISBN 3-540-41610-2
Price DM 78,   See  http://link.springer.de/link/service/series/0558/tocs/t1995.htm  
for details

Position Papers   pdf 1Mbyte file

Invited Talks  pdf 1Mbyte file

Additional Invited Talks (not in the above file)

    Joe Pato's Slides  pdf 2.5Mbyte file
    Matt Blaze's Slides

Programme  Overview

Policy Workshop 2001
29-31 January 2001
HP Laboratories, Bristol, UK

Program

Monday 29 January 2001 

8.45 - 9.30:  Registration and Coffee

9.30:   Welcome

9.40 - 10.30 Keynote

Chair: Cheh Goh, HP Labs, Bristol

• Mechanized Policy, Fact or Fancy?
  Joe Pato, Principal Scientist, Trusted E-Services Lab - HP Labs, Cambridge MA USA.
  Abstract

10.30 - 11.00 Coffee 

Chair: Peter Linington, University of Kent, UK

• Author Obliged to Submit Paper before 4 July: Policies in an Enterprise Specification
  J. Cole¹ J. Derrick², Z. Milosevic¹ and K. Raymond^{1
  1}DSTC, University of Queensland, Australia,  ²University of Kent, UK
• The Ponder Policy Specification Language
  N. Damianou, N. Dulay, E. Lupu and M. Sloman
  Imperial College, UK
• IPSec/VPN Security Policy: Correctness, Conflict Detection and Resolution
  Z. Fu¹, F. Wu¹, H. Huang², K. Loh², F. Gong², I. Bladine³, and C. Xu^{3
  1}North Carolina State University,  ²Nortel Networks,  ³MCNC, USA
• Monitors for History-based Policies
  J. Chomicki¹ and J. Lobo^{2
  1}SUNY, ²Bell Laboratories, USA

13.00-14.00 Lunch

Chair: Ravi Sandhu, George Mason University, USA

• A Type/Domain Policy for Internet Transmission, Sharing and Archiving of Medical and Biological Data
  R. Viviani
  Uniklinik Ulm, Germany
• Tower: A Language for Role Based Access Control
  M. Hitchens and V. Varadharajan
  University of Western Sydney, Australia
• Translating Role-based Access Control Policy within Context
  J. Bacon, M. Lloyd and K. Moody
  University of Cambridge, UK
• Model-Based Tool-Assistance for Packet-Filter Design
  I. Lueck¹, C. Schaefer² and H. Krumm^{2
  1}Materna Information and Communications, ²University of Dortmund, Germany

16.00 - 16.30 Tea

16.30 - 18.00 Session 3  Formal and Natural Language for Policy 

• Role Based Constraints Language
  R. Sandhu and G.-J. Ahn
  George Mason University, USA
• The Incorporation of Control Principles into Access Control Policies
  A. Schaad and J. Moffett
  University of York, UK
• Event Centric Policy Specification for E-Commerce Applications
  A. S. Abrahams and J. M. Bacon
  University of Cambridge, UK

18.00 - 19.30  Reception at HP Laboratories

Tuesday 30 January 2001 

9.00 - 10.30 Invited Talks

Chair: Francisco Garcia, Agilent Technologies, UK

• Policy and the IETF - Theory and Practice
  John Strassner 
  Past Chairman IETF Policy Working Group, Cisco, USA
  Abstract
• Provisioning Your Future through Policy-based Management
  Rick Roeling
  OpenView PolicyXpert Architect, Hewlett-Packard Company, USA
  Abstract

10.30 - 11.00 Coffee

11.00 - 13.00 Session 4 Network Policy Realization

Chair:  Ed Elleson, LongBoard, USA

• Policy Based SLA Management in Enterprise Networks
  D. Verma, M. Beigi and R. Jennings
  IBM T.J. Watson Research Center, USA
• Integrating Goal Specification in Policy-based Management
  M. Bearden, S. Garg and W. Lee
  Bell Laboratories, USA
• Taxonomy of Policy Combination
  Y. Kanada
  Hitachi Central Research Laboratories, Japan
• Issues in Managing Soft QoS Requirements in Distributed Systems Using a Policy Based Framework
  H. Lutfiyya, G. Molenkamp, M. Katchabaw and M. Bauer
  University of Western Ontario, Canada

13.00-14.00 Lunch

14.00 - 16.00 Session 5 Perspectives on Policy Architectures

Chair:  John Vicente, Intel, USA

• A Policy based Management Architecture for Large Scale Active Communications Systems
  I. Marshall and P. Mckee
  BTexaCT, UK
• Policy Driven Management of Agent Systems
  A. Corradi¹, N. Dulay², R. Montanari¹ and C. Stefanelli^{2
  1}Universityof Bologna, Italy,  ²Imperial College, UK, ³University of Ferrara, Italy
• On Policy-based Extensible Hierarchical Network Management in QoS-enabled IP Networks
  P. Flegkas, P. Trimintzios, G. Pavlou, I.  Andrikopoulos and C. F. Cavalcanti
  University of Surrey, UK
• Towards Extensible Policy Enforcement Points
  R. Boutaba¹ and A. Polyrakis^{2
  1}University of Waterloo, ²University of Toronto, Canada

16.00-16.30 Tea

16.30 - 18.00 Session 6 Policy Applications

Chair: Ian Marshall, BTexaCT, UK

• Policy-Based Storage Management
  M. A. Carlson¹, M. Dutch², J. Gelb³, G. Mueller⁴, P. Spasic⁵ and L. VanArsdale^{6
  1}Sun Microsystems, ²Troika Networks, ³IBM, ⁴Storage Tek, ⁵HP, ⁶BMC Software,USA
• Distributed Policy Management and Comprehension with Classified Advertisements
  N. Coleman, R. Raman, M. Livny and M. Solomon
  University of Wisconsin, USA
• Policy-based Management: Towards Internet Service Provisioning
  J. Vicente, L. Xie, H. Cartmill and G. Anavi
  Intel Corporation, USA

19.30 Conference Dinner at the Roman Bath Pump Rooms, Bath
            Buses leave HP at 18.30

Wednesday 31 January 2001

9.00 - 10.30 Invited Talks

Chair:  Jonathan Moffett, University of York, USA

• Trust Management and Security Policy
  Matt Blaze
  AT&T Research Laboratories, USA
  Abstract
• On the Negotiation of Access Control Policies
  Virgil Gligor, Himanshu Khurana 
  University of Maryland at College Park, USA
  Abstract

10.30 - 11.00 Coffee

11.00 - 13.00 Panel: Future Directions for Policy Research

Chair:  Morris Sloman, Imperial College, UK

Panelists:  

Ravi Sandhu, George Mason University, USA
to focus on RBAC and security issues.

John Strassner, Cisco, USA
to focus on information modelling.

Ed Elleson, LongBoard, USA 
to focus on what is required for network management.

Bret Michel, Naval Postgraduate School, USA
 to focus on enterprise policy and  trust.

Marek Sergot, Imperial College, UK
to focus on prospects of developing  (appropriate) formal-logical languages and tools.

Policy based frameworks are comparatively new, mostly with vendor-specific tools to support policy specification. There is not much commonality in the approaches being followed in policy-based network management, role-based access control, security policies for operating systems, databases or firewalls. This panel will address some of issues we should be focusing on for future research.

• Is it feasible to have a common approach for management, security and enterprise policy specification?

• Is a standard information model such as the CIM Policy model sufficient?

• Do we need standard policy specification languages?

• What should be the starting point for policy specification -  enterprise goal or service level agreements?

• What is missing from current approaches?

• What techniques and tools are needed for analysis?

• What is needed for large-scale policy based systems?

13.00 Close of Conference