Descrição, Geração e Difusão de Políticas de Segurança

Neste artigo é apresentada uma ferramenta de descrição de Políticas de Segurança, baseada na linguagem SPSL (Security Policy Specification Language). A ferramenta permite efectuar a descrição de políticas de segurança posteriormente utilizadas na criação e difusão de regras reconhecidas por vários equipamentos na implementação das políticas de segurança das organizações

Policy Algebras for Hybrid Firewalls

Firewalls are a effective means of protecting a local system or network of systems from network-based security threats. In this paper, we propose a policy algebra framework for security policy enforcement in hybrid firewalls, ones that exist both in the network and on end systems. To preserve the security semantics, the policy algebras provide a formalism to compute addition, conjunction, subtraction, and summation on rule sets; it also defines the cost and risk functions associated with policy enforcement. Policy outsourcing triggers global cost minimization. We show that our framework can easily be extended to support packet filter firewall policies. Finally, we discuss special challenges and requirements for applying the policy algebra framework to MANETs

Development of a Security Methodology for Cooperative Information Systems: The CooPSIS Project

Since networks and computing systems are vital components of today\u27s life, it is of utmost importance to endow them with the capability to survive physical and logical faults, as well as malicious or deliberate attacks. When the information system is obtained by federating pre-existing local systems, a methodology is needed to integrate security policies and mechanisms under a uniform structure. Therefore, in building distributed information systems, a methodology for analysis, design and implementation of security requirements of data and processes is essential for obtaining mutual trust between cooperating organizations. Moreover, when the information system is built as a cooperative set of e-services, security is related to the type of data, to the sensitivity context of the cooperative processes and to the security characteristics of the communication paradigms. The CoopSIS (Cooperative Secure Information Systems) project aims to develop methods and tools for the analysis, design, implementation and evaluation of secure and survivable distributed information systems of cooperative type, in particular with experimentation in the Public Administration Domain. This paper presents the basic issues of a methodology being conceived to build a trusted cooperative environment, where data sensitivity parameters and security requirements of processes are taken into account. The milestones phases of the security development methodology in the context of this project are illustrated

Gestão por políticas: arquitectura e aplicações

Neste artigo é feita uma abordagem à gestão de redes baseadas em políticas focando a arquitectura PBN (Policy-Based Networking) proposta no âmbito do grupo de trabalho Policy Framework do IETF (Internet Engineering Task Force). São evidenciados os principais aspectos desta arquitectura, desde os protocolos de comunicação até às linguagens de especificação de políticas, passando pelos modelos necessários à representação de informação. Relativamente às linguagens de especificação de políticas, apresenta-se uma visão geral sobre a sua aplicabilidade na arquitectura PBN. No âmbito dos protocolos de difusão de política, destacase o protocolo COPS (Common Open Policy Service) e COPS-PR (COPS for Policy provisioning). O artigo termina com a descrição de uma aplicação de gestão de firewalls através do uso de políticas. Esta aplicação baseia-se na arquitectura de gestão por políticas (PBN) proposta e aplica a linguagem SPSL e o protocolo COPS-PR

From public information to democratic governance: a theoretical atlas from an axiomatic approach to the evaluation of public management

The general theme is the diagnosis of the quality of public information and the evaluation of democratic governance. The specific thematic axis is the nature and purpose of public information in the context of the democratic rule of law in Mexico, in the federal states and, in particular, in the state of Veracruz . The problem is to answer the question: What is required for an effective evaluation of public management? Based on this approach, it is argued that the way to effectively evaluate public management presupposes a theory and indicators of democratic governance. In order to understand the elements that constitute democratic governance it is necessary to use the axiomatic method; this requires establishing: 1) Basic, stipular and common definitions; 2) Axioms, as propositions articulated with the basic and consensual definitions; 3) Postulates, which are propositions admitted as true, which are derived from the basic definitions and from the axioms; 4) Theorems, propositions derived from the postulates. From the theorems are derived the indicators of the present theoretical atlas of democratic governance, which will be shown in a later phase of the essay. This research recovers philosophical, juridical, political, economic and accounting aspects. Its articulating axis is the concept of public information, which is linked to those of transparency, corruption, social participation, accountability and citizen oversight, being minimum elements necessary for the understanding and evaluation of democratic governance

From public information to democratic governance: a theoretical atlas from an axiomatic approach to the evaluation of public management

The general theme is the diagnosis of the quality of public information and the evaluation of democratic governance. The specific thematic axis is the nature and purpose of public information in the context of the democratic rule of law in Mexico, in the federal states and, in particular, in the state of Veracruz . The problem is to answer the question: What is required for an effective evaluation of public management? Based on this approach, it is argued that the way to effectively evaluate public management presupposes a theory and indicators of democratic governance. In order to understand the elements that constitute democratic governance it is necessary to use the axiomatic method; this requires establishing: 1) Basic, stipular and common definitions; 2) Axioms, as propositions articulated with the basic and consensual definitions; 3) Postulates, which are propositions admitted as true, which are derived from the basic definitions and from the axioms; 4) Theorems, propositions derived from the postulates. From the theorems are derived the indicators of the present theoretical atlas of democratic governance, which will be shown in a later phase of the essay. This research recovers philosophical, juridical, political, economic and accounting aspects. Its articulating axis is the concept of public information, which is linked to those of transparency, corruption, social participation, accountability and citizen oversight, being minimum elements necessary for the understanding and evaluation of democratic governance