摘要
提出了层次化的网络策略管理模型,其特点是引入了多级策略决策点(PDP),在策略执行点(PEP)中引入本地PDP和缓存,PDP中也引入缓存,扩展了IETF策略管理框架.实现了将高层策略规范转换为各种运行期描述的策略编译器及其后端.将策略作为运行期对象实现,可以在域服务中方便地访问策略对象并将其自动分发到执行组件,减轻了PDP的负担,提高了被管设备的智能和网络管理的自动化程度,提高了系统的可扩展性和健壮性.
Policy-based management is a relatively new development in the area of network management. A policy-based hierarchical management model is proposed, which employs the multi-level policy decision point (PDP) to extend IETF policy architecture. Local PDP and cache are introduced in policy enforcement point (PEP), and PDP is also designed with cache. Moreover, the compiler and its back-ends are implemented to translate the high level policy specifications into a variety of runtime representations. A policy is implemented in the runtime as an object which can be accessed from the domain service and distributed to the enforcement components automatically. Not only is the intelligence pushed into managed devices, but also the scalability and robustness of this system is promoted using the model.
出处
《西安交通大学学报》
EI
CAS
CSCD
北大核心
2003年第12期1216-1219,共4页
Journal of Xi'an Jiaotong University
基金
国家"八六三"网络安全管理与测评技术基金资助项目 (863 - 3 0 1 - 0 5- 0 3 )
关键词
策略管理
策略决策点
策略执行点
编译器
Hierarchical systems
Java programming language
Program compilers