000000004 001__ 4
000000004 005__ 20130522141943.0
000000004 037__ $$aTEST-ARTICLE-2005-004
000000004 041__ $$aeng
000000004 100__ $$aKonstantin Beznosov
000000004 245__ $$aOn the Benefits of Decomposing Policy Engines into Components
000000004 260__ $$c2005-10-11
000000004 300__ $$a6p
000000004 520__ $$aIn order for middleware systems to be adaptive, their properties and services need to support a wide variety of application-specific policies. However, application developers and administrators should not be expected to cope with complex policy languages and evaluation engines or to develop custom engines from scratch. In this paper, we discuss the benefits of policy engines designed as component frameworks with a mix of parameterized pre-built and custom logic composed to implement complex policies. To provide an example of such a design approach, we present an authorization architecture for ASP.NET Web services that has been implemented in a real-world system.
000000004 6531_ $$aMiddleware
000000004 6531_ $$aPolicy
000000004 6531_ $$aAuthorization
000000004 6531_ $$aSecurity
000000004 6531_ $$aArchitecture.
000000004 8560_ $$fqiangw@ece.ubc.ca
000000004 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/4/files/4.pdf$$yTransfer from CDS 0.99.7
000000004 909C4 $$pKonstantin Beznosov. Flooding and recycling authorizations. In Proceedings of the New 
Security Paradigms Workshop (NSPW’05), pages 67–72, Lake Arrowhead, CA, USA, 20-23 
September 2005. ACM Press.

000000004 980__ $$aRefConfPaper