[Agenda] [Examples] [Network Partitioning] [Concepts] [Policy] [Process] [Organization] [HW-SW] [Cases studies] [Conclusion] [Resources]
[first slide] Abstraction level of Policy-based network security management (3/4) [previous slide] [next slide]


* Policy-based management does imply

o High-level view of cooperative objects in unordered graph in an intuitive Policy Definition Tool

o Meta-policies that apply globally across the organization

o Centralized and decentralized policy definition

o Authentication and logging of policy rules

o Design only enforceable policy
   - No conflict detection between incompatible configurations

o Audit mecanisms to review and verify the policy


*********************************************************************
HSC ® © Hervé Schauer Consultants December 1999 - 142, rue de Rivoli - F-75001 Paris - France
Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr>
- Page 58 -