Policy Technologies for Self-Managing Systems
  • Alternative view 1 of Policy Technologies for Self-Managing Systems
  • Alternative view 2 of Policy Technologies for Self-Managing Systems

Policy Technologies for Self-Managing Systems

by Dakshi Agrawal, Seraphin Calo, Kang-won Lee, Jorge Lobo
     
 

View All Available Formats & Editions

ISBN-10: 0132213079

ISBN-13: 9780132213073

Pub. Date: 10/24/2008

Publisher: Pearson Education

Policy Technologies for Self-Managing Systems

Dakshi Agrawal

Calo Seraphin

Kang-won Lee

Jorge Lobo

Dinesh Verma

Use policies to build self-managing IT systems that save money, improve availability, and enhance agility

IT policies can be used to guide and automate decision making in the management of computer and network infrastructure, helping IT

Overview

Policy Technologies for Self-Managing Systems

Dakshi Agrawal

Calo Seraphin

Kang-won Lee

Jorge Lobo

Dinesh Verma

Use policies to build self-managing IT systems that save money, improve availability, and enhance agility

IT policies can be used to guide and automate decision making in the management of computer and network infrastructure, helping IT organizations reduce costs, improve service quality, and enhance business agility. Now, a team of top IBM researchers introduces the latest innovations in policies and autonomic computing and demonstrates how to put them to work in your organization.

The authors cover the entire policy lifecycle: planning, definition, representation in standard policy languages, validation, distribution, enforcement, and more. They identify proven patterns for designing policy-enabled self-managing systems and show how policies can be integrated into a complete framework for system self management. They carefully introduce key technologies such as rules engines and the IBM Policy Management framework, as well as emerging standards such as the DMTF’s Common Information Model. Finally, they offer start-to-finish case studies of policy management in areas ranging from storage and IP networking to security.

This book’s insights and practical guidance will be invaluable to every IT

professional who can benefit from policies: architects, developers, administrators, researchers, and managers alike.

Coverage includes

  • Understanding the life cycle and components of policy-based self-managing systems
  • Identifying your best opportunities to drive value from policies
  • Defining the most appropriate abstraction level for your policies
  • Using the DMTF’s Common Information Model to establish the logical structure and contents of policies
  • Validating the consistency and appropriateness of your policies
  • Making your policies automatically enforceable by computer
  • Using policies to simplify and streamline configuration management for SANs and other IT systems
  • Improving availability by implementing policies that can automatically react to faults and error conditions

Product Details

ISBN-13:
9780132213073
Publisher:
Pearson Education
Publication date:
10/24/2008
Edition description:
New Edition
Pages:
208
Product dimensions:
7.10(w) x 9.30(h) x 0.80(d)

Table of Contents

Foreword xi

Preface xiii

Chapter 1 Policy Definition and Usage Scenarios 1

1.1 Formal Definition of Policy 2

1.1.1 Types, Nature, and Usage of Policies 6

1.2 Policy-Based Self-Configuration 10

1.3 Policy-Based Self-Protection in Computer Networks 13

1.4 Policy-Based Self-Optimization in Computer Systems 15

1.5 Policy-Based Self-Healing 16

1.6 Building a Policy-Based Management System 17

1.7 Summary 20

Chapter 2 Policy Lifecycle-Creation, Distribution, and Enforcement 21

2.1 A Holistic View of the Policy Lifecycle 22

2.2 Instances of Policy-Based Systems 25

2.2.1 Network QoS Control 25

2.2.2 Privacy Policy Publication 27

2.2.3 Policy-Based Management of Enterprise Network Access 28

2.3 Policy Creation 30

2.4 Policy Distribution 31

2.5 Policy Distribution Using Repositories 35

2.5.1 Grouping of Policies by System Components Role 36

2.5.2 Grouping of Policy Components 37

2.6 Policy Creation and Distribution for Multiple Administrative Domains 38

2.7 Policy Enforcement 41

2.7.1 Policy Evaluation Trigger 42

2.7.2 Policy Enforcement Context 44

2.7.3 Data Gathering 45

2.7.4 Policy Evaluation 46

2.7.5 Decision Execution 49

2.8 Summary 50

Chapter 3 Policy Information Model 51

3.1 How Is an Information Model Described? 52

3.2 Policy Information Models 54

3.2.1 Why Use Information Models 55

3.2.2 Condition-Action Information Model 56

3.2.3 Event-Condition-Action Information Model 59

3.2.4 Mode-Subject-Action-Target Information Model 59

3.2.5 Grouping, Scope, and Priorities 60

3.3 A Standardized Policy Model 62

3.3.1 The Common Information Model (CIM) 62

3.3.2 The CIM Policy Model 63

3.4 Summary 69

Chapter 4 PolicyLanguages 71

4.1 Declarative Nature of Policy Languages 72

4.2 Survey of Policy Languages 73

4.2.1 PDL 73

4.2.2 Ponder 76

4.2.3 CQL 79

4.2.4 XACML 81

4.2.5 ACPL 81

4.3 CIM-SPL 82

4.3.1 CIM-SPL Policy Rules 82

4.3.2 Policy Groups 87

4.3.3 An Example of CIM-SPL Policy 89

4.4 Summary 91

Chapter 5 Policy Transformation and Analysis 93

5.1 Policy Transformation 94

5.2 Design-Time Techniques for Policy Transformation 95

5.2.1 Transformation Using Analytical Models 96

5.2.2 Transformation Using Static Rules 96

5.2.3 Transformation by Policy Table Lookup 97

5.2.4 Transformation Using Case-Based Reasoning 99

5.3 Real-Time Policy Transformation 104

5.4 Policy Analysis 106

5.4.1 Conflict Checking 106

5.4.2 Conflict Resolution 109

5.4.3 Coverage Checking 111

5.4.4 What-If Analysis 112

5.5 Related Work 113

5.6 Summary 114

Chapter 6 Policy-Based Configuration Management 115

6.1 Configuration Management Overview 116

6.2 Policy-Based Configuration Management 118

6.2.1 Policy-Based Simplification of Configuration Management 118

6.2.2 Policy-Based Tuning of System Configuration 119

6.2.3 Policy-Based Checking of System Configuration 120

6.3 Example in Storage Area Networks 121

6.3.1 Configuration Checking of Storage Area Networks 122

6.3.2 Policy Modeling and Representation 125

6.3.3 Architecture of a Policy-Based SAN Configuration Checker 128

6.4 Example in Hosted Server Environment 131

6.4.1 Architecture for Self-Configuration 133

6.4.2 Variations on the Architecture 136

6.5 Summary 137

Chapter 7 Policy-Based Fault Management 139

7.1 Fault Management Overview 139

7.1.1 Fault Management in Networks 141

7.1.2 Fault Management in Web-Based Applications 144

7.2 Policy-Based Fault Management 145

7.2.1 Policy-Based Acquisition of Fault Information 146

7.2.2 Policy-Based Format Conversion 147

7.2.3 Policy-Based Event Volume Reduction 149

7.2.4 Policy-Based Root Cause Analysis 150

7.2.5 Policy-Based Remedial Action 151

7.3 Architecture of a Policy-Based Fault Management System 153

7.4 Summary 156

Chapter 8 Policy-Based Security Management 157

8.1 Overview of Security Management 158

8.2 Policy Applications in Security 159

8.2.1 Policy-Driven Access Control 160

8.2.2 Higher-Level Access Policies 163

8.2.3 Policy-Based Self-Protection 164

8.2.4 Policy-Based Communication Assurance 168

8.3 Policy-Based Security Assurance for IPsec Protocol 168

8.3.1 Business Needs Satisfied by the Security Assurance Tool 169

8.3.2 Communication Control Policies for IPsec Protocol 170

8.3.3 Generating the Communication Control Policies 172

8.4 Summary 173

Chapter 9 Related Topics 175

9.1 Production Rules 175

9.2 Business Rules and Processes 177

9.3 IT Processes 179

9.4 Event Correlation and Notification Systems 180

9.5 Service Level Agreements 183

9.6 Regulatory Compliance 185

9.7 Proliferation of Policy-Based Technologies 186

References 189

Index 195

Customer Reviews

Average Review:

Write a Review

and post it to your social network

     

Most Helpful Customer Reviews

See all customer reviews >