dynamic and adaptive policy models for coalition
play

Dynamic and adaptive policy models for coalition operations - PowerPoint PPT Presentation

May 31, 2023 •474 likes •603 views

Dynamic and adaptive policy models for coalition operations Seraphin B. Calo Overview Goal: develop approaches and mechanisms for policy based management that enable autonomy in the operation of the constituent elements of the coalition system

  1. Dynamic and adaptive policy models for coalition operations Seraphin B. Calo

  2. Overview Goal: develop approaches and mechanisms for policy based management that enable autonomy in the operation of the constituent elements of the coalition system Coalition Needs Principal Topics n A dynamic, secure and resilient information n Generative policy mechanisms: new policy infrastructure that conforms to the policies architectures in which elements can generate of each coalition member their policies under a loose set of guidance from a central coalition commander n Autonomous operations within the bounds n Algorithms that ensure consistency and of collaborative pursuit of common goals coherence in the operation of generative policy based systems n Understand human issues that impact policy definition and enforcement n Security and resource management: apply the generative policy model to the management of coalition operations Policy: a set of considerations designed to guide decisions on courses of action 2

  3. Traditional Management Model A set of managed devices connected to a management system by a communication network Human Operator • Managed devices are given configuration information by the management system Managed Manual config Device • Operational information (e.g., alerts or logs) are provided by the managed device to the Managed management system Device Handled by • Management system would have a set of System Auto-config algorithms/policies/rules to deal with the set of Managed alerts and logs that are processed Device Management Alerts, logs System In order to handle an alert or log, the system may decide to send a reconfiguration command to the managed device • Syntax and semantics of alerts, logs and configurations are determined by the domain of management, e.g., fault management, security management, performance management etc. • When the system is not able to deal with the alerts or logs the human operator intervenes to deal with the situation, diagnoses the underlying cause, and then reconfigures the system to react to the unexpected situation 3

  4. Policy Based Management Policies capture desired behaviors Human View • Human operator provides an objective for the of Policies managed device Alerts/Logs Configuration • Management system translates objectives into a Policy Refinement (PRF) Policy Enforcement Point machine view of policy through the process of (PEP) refinement or transformation Machine View • Policies are declarative, Event-Condition-Action of Policies (ECA) rules Policy Decision Point (PDP) DMTF/IETF Policy Model • Managed devices contain policy enforcement points (PEP) for externalizing decisions • When a situation requiring a decision arises, the relevant PEP converts it into a request to a policy decision point (PDP) • PDPs access the set of policies relevant to the decision that needs to be made • Policies determine the decision based on the managed device and its current state • PDP informs the PEP what actions to take • PEP can then change the system configuration to react to the environment 4

  5. Evolution of Policy Based Management Generative Policy Device Mgmt System based Autonomy PEP PDP PRFD PRFM Device Mgmt System Policy based Autonomy PEP PDP PRF Device Mgmt System No Autonomy PEP PDP PRF Elements of the policy infrastructure can be configured in different ways • PEPs are associated with managed resources and will usually be co-located with them • Policy refinement process (PRF) will usually be embedded in the management system • PDPs could be embedded in the management system • Leads to more centralized management • PDP could be co-located with its associated PEPs in the managed environment • Supports distributed systems management configurations • Policies would be pushed to appropriate PDPs when they are specified or changed • System exhibits a greater degree of autonomic behavior Generative paradigm splits refinement between management and managed systems 5

  6. Generative Policy Based Management Device Mgmt System Generative Policy Model PRFD Interaction PRFM Graph • PDP is embedded within the managed device • PDP gets its policies from the PRFD module that is Policies also embedded within the managed device PDP • PRFM is responsible for sending the overall coordination guidelines to the PRFD PEP Interaction Graph • Interaction graph is an abstract description of the various entities within the environment that the PRFD needs to interact with • It is defined as a relationship between entities in different roles, not as an exhaustive listing of all the different devices in the system. Information Flow • PRFM provides two types of information to each PRFD • Representation of an interaction graph • Role of each PRFD in the interaction graph is defined by the PRFM • PRFM also associates a set of attributes with each link in the interaction graph • Link attributes indicate what information is available on that link 6

  7. Example: Secure Access Maintaining secure access to documents • Document server contains a set of documents, some of which are considered sensitive Web Server • Set of users have access to sensitive documents Packet Document Firewall Server - Can be accessed either using a web-based server or SSH Server via a secure shell based system • Packet filtering firewall is provided to safeguard access to both the web-based server and the SSH server Current Practice • Human administrator manually configures filtering and access control policies for the firewall, web- server, secure shell server and the document server • Ports on the firewall need to be configured to allow access to the web server If web-server employs a moving target defense , it changes its port for the web-server regularly ⎻ Configuration of the firewall needs to be repeated manually every-time such a change occurs ⎻ 7

  8. Example: Secure Access (Generative) Global Interaction Graph Generative Approach N P D • Human operator specifies access requirements for documents Address, Port User Id • Packet firewall, Web server, SSH server, and Document server each derive their policies to comply with access requirements N P D • If web-server switches its port as part of the moving target Web Server N P P D Packet Document defense, the packet firewall would automatically adjust its N P D Firewall Server filtering policies accordingly SSH Server Component Interactions • Three roles: network protection role( N ), protocol protection role( P ), document protection role( D ) Web server and SSH server are both in the protocol protection role, Document server is in the ⎻ document protection role, and Firewall is in the network protection role • Attributes: entity in role D can provide User Ids to entity in role P, entity in role P can provide Address and Port number to entity in role N • PRFD for each device receives the interaction graph Discovers the other nodes that are associated with adjacent roles in the interaction graph ⎻ Gets the attribute values identified by the devices in those roles in the interaction graph ⎻ Generates its own set of policies to be used for its PDP ⎻ 8

  9. Software Defined Coalitions (SDC) Coalition Operations • Members of a coalition establish dynamic communities of interest (CoI) to accomplish joint missions • CoIs may also be formed in non-military contexts, e.g. when different civilian agencies come together to deal with emergency situations (e.g., fires, hurricanes) • Coalition members retain their management policies, and not all members may be trusted equally IT Infrastructure • CoI assets come from the different coalition members • Many assets would be capable of significant processing power (e.g., drones, self-driving cars, robots, video cameras) Each of these assets can run the PEP, PDP and the PRFD components of the generative architecture, and take ⎻ decisions on their own • Coalition assets are subject to dual management • Must be able to deal with the instructions and commands from both managers • May have to work independently in a disconnected mode • A U.S. asset (e.g., drone) that is part of a coalition CoI initially needs to be prepared for participation by a U.S. operator using a U.S. management system • The CoI commander needs to prepare them for the mission using the mission management system • During the mission, the assets may be operating without a connection to any management system

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Temporal-Di ff erence Learning What is MC estimation doing? Adaptive Dynamic Programming V ( s t

Temporal-Di ff erence Learning What is MC estimation doing? Adaptive Dynamic Programming V ( s t

Coming Up With Better Policies We can interleave policy evaluation with policy improvement as before. * V * 21 STICK 20 E ! Q 0 I E ! I ! E ! Q 19 0 ! 1 21 Usable 18 + 1 17

299 views • 3 slides
Dynamic Adaptive Policymaking: An Approach to Planning Under Deep Uncertainty Prof. Dr. Warren

Dynamic Adaptive Policymaking: An Approach to Planning Under Deep Uncertainty Prof. Dr. Warren

Dynamic Adaptive Policymaking: An Approach to Planning Under Deep Uncertainty Prof. Dr. Warren E. Walker New Zealand Climate Change Research Institute Victoria University of Wellington 10 February 2015 The Problem: How to make policy in a

767 views • 34 slides
A Framework for Comparing Models for Adaptive Testing Jill-Jnn Vie February 19, 2016 Models

A Framework for Comparing Models for Adaptive Testing Jill-Jnn Vie February 19, 2016 Models

A Framework for Comparing Models for Adaptive Testing Jill-Jnn Vie February 19, 2016 Models for Adaptive Testing Framework, Experiment, Results NEW! Adaptive Submodularity Models for Adaptive Testing Computerized Adaptive Testing (CAT)

669 views • 30 slides
Toward a Principled Framework to Design Dynamic Adaptive Streaming Alg lgorithms over HTTP

Toward a Principled Framework to Design Dynamic Adaptive Streaming Alg lgorithms over HTTP

Toward a Principled Framework to Design Dynamic Adaptive Streaming Alg lgorithms over HTTP Xiaoqi Yin, Vyas Sekar, Bruno Sinopoli 1 Design Dynamic Adaptive Streaming (D (DASH) algorithms is is cri ritical for better QoE B/W Video

517 views • 14 slides
Watershed Adaptive Management Conceptual Models and Indicators Fraser Shilling Department

Watershed Adaptive Management Conceptual Models and Indicators Fraser Shilling Department

Watershed Adaptive Management Conceptual Models and Indicators Fraser Shilling Department of Environmental Science & Policy University of California, Davis fmshilling@ucdavis.edu Watershed Adaptive Management Watershed assessment

1.64k views • 27 slides
Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive

Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive

Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive Submodularity Ratio Kaito Fujii (UTokyo) & Shinsaku Sakaue (NTT) The 36th I nternational Conference on Machine Learning Jun. 12, 2019 Application: I n fl

955 views • 30 slides
1 Other names are dynamic treatment regimes, treatment algorithms, stepped care models, expert

1 Other names are dynamic treatment regimes, treatment algorithms, stepped care models, expert

65 minutes Introduction to Adaptive Treatment Strategies What are adaptive treatment strategies (ATS)? What are the pieces that make up an ATS? Examples of ATSs: Compare simple versus deeply-tailored ATSs. Discuss why ATSs are needed Utilizing

788 views • 49 slides
Plan Dynamic Linear Models Bayesian Analysis of Dynamic Linear Models in R The R package dlm

Plan Dynamic Linear Models Bayesian Analysis of Dynamic Linear Models in R The R package dlm

Plan Dynamic Linear Models Bayesian Analysis of Dynamic Linear Models in R The R package dlm Giovanni Petris Examples & applications GPetris@uark.edu Department of Mathematical Sciences University of Arkansas useR! 2006 p.1/26 useR!

386 views • 7 slides
Proposed Adaptive Management Plan Presented by the Great Bay Municipal Coalition Dover, Exeter,

Proposed Adaptive Management Plan Presented by the Great Bay Municipal Coalition Dover, Exeter,

Proposed Adaptive Management Plan Presented by the Great Bay Municipal Coalition Dover, Exeter, Newmarket, Portsmouth, and Rochester Dean Peschel 603-781-5931 dean_peschel@yahoo.com Areas of Agreement Nitrogen levels in the estuary have

237 views • 7 slides
MUCH ADU ABOUT HOUSING ADU Reform Legislation ABOUT THE COALITION WHY A HOUSING COALITION?

MUCH ADU ABOUT HOUSING ADU Reform Legislation ABOUT THE COALITION WHY A HOUSING COALITION?

MUCH ADU ABOUT HOUSING ADU Reform Legislation ABOUT THE COALITION WHY A HOUSING COALITION? 10 years with no concrete action from the city Widespread misinformation about affordable housing and land use policy Need to represent

435 views • 10 slides
Case Studies in Dynamic Network Models: (Xu and Hero, 2013) (Sarkar and Moore, 2005) Alex Loewi

Case Studies in Dynamic Network Models: (Xu and Hero, 2013) (Sarkar and Moore, 2005) Alex Loewi

Case Studies in Dynamic Network Models: (Xu and Hero, 2013) (Sarkar and Moore, 2005) Alex Loewi February 25, 2014 Introduction Dynamic Models (Commonalities) Latent Space Models Static LSM Refresher Dynamic LSMs The Basis of an Extension

812 views • 25 slides
Models at Runtime for Adaptive and Self-managing Software Dagstuhl Seminar on Models@run.time

Models at Runtime for Adaptive and Self-managing Software Dagstuhl Seminar on Models@run.time

Models at Runtime for Adaptive and Self-managing Software Dagstuhl Seminar on Models@run.time (2011) Holger Giese and Thomas Vogel System Analysis & Modeling Group Hasso Plattner Institute for Software Systems Engineering University of

399 views • 11 slides
Coalition for Sustainable Flood Insurance 2020 Policy Proposals The Coalition for Sustainable

Coalition for Sustainable Flood Insurance 2020 Policy Proposals The Coalition for Sustainable

Coalition for Sustainable Flood Insurance 2020 Policy Proposals The Coalition for Sustainable Flood Insurance The Coalition for Sustainable Flood Insurance (CSFI) was formed by GNO, Inc. in 2013, and grew to be national in scope. Since its

418 views • 15 slides
Models: Take a broad view! Structural Dynamic Macroeconomic Models in Asia-Pacific Economies

Models: Take a broad view! Structural Dynamic Macroeconomic Models in Asia-Pacific Economies

BANK INDONESIA and BANK FOR INTERNATIONAL SETTLEMENTS WORKSHOP Models: Take a broad view! Structural Dynamic Macroeconomic Models in Asia-Pacific Economies Economy-wide dynamic stochastic models Bali, Indonesia, June 3-4, 2008 for

328 views • 13 slides
Settin ing the Stage: Addressing Marijuana through Policy About the Breathe Easy Coalition: The

Settin ing the Stage: Addressing Marijuana through Policy About the Breathe Easy Coalition: The

Settin ing the Stage: Addressing Marijuana through Policy About the Breathe Easy Coalition: The Breathe Easy Coalition of Maine is a statewide umbrella organization of the Smoke-Free Housi sing Coalition of f Main ine, Main ine Tobacco-Free

465 views • 11 slides
NETWORKONCHIPASSISTED ADAPTIVE PARTITIONING AND ISOLATION FOR DYNAMIC HOMOGENEOUS

NETWORKONCHIPASSISTED ADAPTIVE PARTITIONING AND ISOLATION FOR DYNAMIC HOMOGENEOUS

NETWORKONCHIPASSISTED ADAPTIVE PARTITIONING AND ISOLATION FOR DYNAMIC HOMOGENEOUS MANYCORES Davide Bertozzi MPSoC Research Group University of Ferrara Italy email : davide.bertozzi@unife.it A collaboration with Jos

617 views • 35 slides
Distributed Privacy Policy Enforcement David Chadwick, Kaniz Fatema University of Kent Scenario

Distributed Privacy Policy Enforcement David Chadwick, Kaniz Fatema University of Kent Scenario

Distributed Privacy Policy Enforcement David Chadwick, Kaniz Fatema University of Kent Scenario A Subject submits some personal identifying information (PII) along with her privacy policy to a service provider (SP) An SP user

429 views • 18 slides
Generic Architecture Architecture Generic to Securely Securely Manage Manage to

Generic Architecture Architecture Generic to Securely Securely Manage Manage to

Trusted Architecture for Trusted Architecture for Securely Shared Services Securely Shared Services Generic Architecture Architecture Generic to Securely Securely Manage Manage to Employability, Healthcare & Employability, Healthcare

813 views • 16 slides
Law as business: The financialization of the legal profession Daniel Muzio, Newcastle University

Law as business: The financialization of the legal profession Daniel Muzio, Newcastle University

Law as business: The financialization of the legal profession Daniel Muzio, Newcastle University The Transformation of the Legal Profession The Quest for Growth and Consolidation Globalization and Internationalization Revisiting the

422 views • 16 slides
PEP-V Orientation Housing Ann Fogel, Deputy Chief of Staff Carmen Hernandez, MSW Homeless

PEP-V Orientation Housing Ann Fogel, Deputy Chief of Staff Carmen Hernandez, MSW Homeless

DC Department of Human Services PEP-V Orientation Housing Ann Fogel, Deputy Chief of Staff Carmen Hernandez, MSW Homeless Services Coordinator Client exits and paths to housing Paths to housing for clients in PEP-V (as of 8/14/20) 1 2 3

465 views • 18 slides
Process PEP 1.0 The focus of the IE Office A three headed enterprise Institutional

Process PEP 1.0 The focus of the IE Office A three headed enterprise Institutional

I nstitutional E ffectiveness O ffice Introducing the IE Director C. Harold McManus, PhD Patriot Evaluation Process PEP 1.0 The focus of the IE Office A three headed enterprise Institutional Research Ghiddrah CR 2.5 (Process) The

589 views • 27 slides
Understanding the Revenue Cycle Under PDGM Presented By: David Hoover Vice President, Revenue

Understanding the Revenue Cycle Under PDGM Presented By: David Hoover Vice President, Revenue

Understanding the Revenue Cycle Under PDGM Presented By: David Hoover Vice President, Revenue Cycle Management, Axxess Jennifer Osburn, RN, HCS-D, ICD-10-CM, COS-C Senior Clinical Consultant, Axxess Objectives Understand the how PDGM

643 views • 25 slides
through the PEP From September 2018 Any year group Current Attainment Emerging Exceeding

through the PEP From September 2018 Any year group Current Attainment Emerging Exceeding

Showing current Attainment through the PEP From September 2018 Any year group Current Attainment Emerging Exceeding Expected Current Attainment - detail Expected + Expected Expected - Any year group- 9 pots, the full picture Attitude to

321 views • 10 slides
T h e B l a c k M a g i c o f P y t h o n Wh e e l s E l a n a H a

T h e B l a c k M a g i c o f P y t h o n Wh e e l s E l a n a H a

T h e B l a c k M a g i c o f P y t h o n Wh e e l s E l a n a H a s h ma n P y t h o n P a c k a g i n g A u t h o r i t y P y C o n U S 2 0 1 9 C l e v e l a n d

581 views • 37 slides

More recommend