In this paper we identify the requirements for the definition of a security framework for distributed access control in dynamic coalitions of heterogeneous systems. Based on the elicited requirements, we introduce the POLIPO framework that combines distributed access control with ontologies to give a globally understandable semantics to policies, enabling interoperability between autonomous and heterogeneous systems. In particular, we present a policy language and an architecture for policy evaluation. We also show that the framework is suitable for the specification and remote evaluation of portable policies.
|Name||Computer science reports|