Executable graphics for PBNM

The specification of a policy is performed in a policy language, usually following a textual representation. However, humans process images faster than text and they are prepared to process information presented in two or more dimensions: sometimes it is easier to explain things using figures and their graphical relations than writing textual representations. This paper describes a visual language, in the form of graphics that are executed in a networking environment, to define a network management policy. This approach allows to map visual tokens and corresponding arrangements into other languages to which a mapping is defined

Policy-based network management in an integrated mobile network

Through the seamless integration of different kinds of technologies, services and terminals, and with the expected offered bandwidth, the next generation networks will put a new set of challenges related to operation and management. In this paper we present a Policy-based Network Management System that is being developed inside the Daidalos IST project

Security and management policy specification

Accepted versio

A graphical user interface for policy composition in CIM-SPL

CIM-SPL is a declarative policy specification language proposed inside DMTF. SPL policies allow the specification of rules to govern the behavior of a system using a PBM approach. However, SPL requires thorough knowledge of the language syntax as well as full understanding of the management scenario and its available management features. This paper describes a graphical CIM-SPL editor application and the supporting policy edition metaphor. A graphical composition process of SPL policies is proposed, based on the use of drag and drop operations of the policy component items in a graphical interface. The editor includes policy creation wizards that guide the user in the policy specification process, in order to alleviate network administrators from the difficulties associated with the intricacies of SPL language. Additionally, a text-based SPL edition tool is provided as a complement for experienced SPL language operators

Rule-Driven Mobile Intelligent Agents for Real-Time Configuration of IP Networks

Even though intelligent agent has proven itself to be a promising branch of artificial intelligence (AI), its mobility capacity has yet been paid enough attention to match the pervasive trend of networks. This paper proposes to inject intelligence into mobile agent of cur-rent literature by introducing rule-driven mobile agent so as to maintain both intelligence and mobility of current agent. Particularly, this methodology is fully exemplified in the context of real-time IP network configuration through intelligent mobile agent based network management architecture, policy specification language and policy information model. A case study for inter-domain IP VPN configuration demonstrates the design and implementation of this management system based on the test-bed developed in the context of European Union IST Project CONTEXT

SDN Access Control for the Masses

The evolution of Software-Defined Networking (SDN) has so far been predominantly geared towards defining and refining the abstractions on the forwarding and control planes. However, despite a maturing south-bound interface and a range of proposed network operating systems, the network management application layer is yet to be specified and standardized. It has currently poorly defined access control mechanisms that could be exposed to network applications. Available mechanisms allow only rudimentary control and lack procedures to partition resource access across multiple dimensions. We address this by extending the SDN north-bound interface to provide control over shared resources to key stakeholders of network infrastructure: network providers, operators and application developers. We introduce a taxonomy of SDN access models, describe a comprehensive design for SDN access control and implement the proposed solution as an extension of the ONOS network controller intent framework

NETQOS policy management architecture for flexible QOS provisioning in Future Internet

This paper is focussed on the NETQOS architecture for automated QoS policy provisioning, which can be used in Future Internet scenarios by the different actors (i.e. network operators, service providers, and users) for flexible QoS configuration over combinations of mobile, fixed, sensor and broadcast networks. The NETQOS policy management architecture opens the possibility to specify QoS policies on a "business" level using ontology descriptions and policy management interfaces, which are specific to the actors. The business level policy specifications are translated by the NETQOS system into intermediate and operational QoS policies for automated QoS configuration at the managed heterogeneous network and transport entities. NETQOS allows QoS policy specification and dependency analysis considering Service Level Agreements (SLAs) between the actors, as well as automated policy provisioning and adaptation. The interaction of the NETQOS components is based on a common po licy repository. The particular focus of the paper is aimed to discuss ontology and actor oriented QoS policy specification and configuration for heterogeneous networks, as well as NETQOS QoS policy management interfaces at business level and automated translation of business QoS policies to intermediate and operational policy level