62 N.H. Minsky, V. Ungureanu. A Mechanism for Establishing Policies for Electronic Commerce. In Proc. of the 18th International Conference on Distributed Computing Systems (ICDCS 1998.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....a vast space of negotiation mechanisms, but also intelligently contribute rules to in uence which negotiation mechanism is chosen. Further issues for future work include meshing more closely with other aspects of contracts, e.g. transactions, payments, negotiation and communication protocols [4] [11], and supplier selection [14] Acknowledgments This work was supported by IBM s University Partnership Program while the third author was at IBM. Hoi Chan of IBM played a key role in development of CommonRules. We would also like to thank Bill Walsh, Terence Kelly, David Parkes, Ed Durfee, Bill ....

N. H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In 18th International Conference on Distributed Computing Systems (ICDCS), May 1998.

....between an agent and the rest of the world, regulate the behaviour of the agents and provide logical security. These coordinators can be seen as law enforcers where the law itself is defined and implemented by their MANIFOLD code; the idea of special law enforcing agents has been introduced in [12,13] and in this section we illustrate how the framework described in [13] can be implemented naturally in our model. The overall setup is illustrated in figure 3 below where for each e commerce agent (implemented in MANIFOLD and other typical programming languages such as Java) there exists a ....

....the agents and provide logical security. These coordinators can be seen as law enforcers where the law itself is defined and implemented by their MANIFOLD code; the idea of special law enforcing agents has been introduced in [12,13] and in this section we illustrate how the framework described in [13] can be implemented naturally in our model. The overall setup is illustrated in figure 3 below where for each e commerce agent (implemented in MANIFOLD and other typical programming languages such as Java) there exists a controller or law enforcer implemented in MANIFOLD; the latter is used to ....

[Article contains additional citation context not shown here]

N. H. Minsky and V. Ungureanu, A Mechanism for Establishing Policies for Electronic Commerce, 18th International Conference on Distributed Computing Systems (ICDCS'98), Amsterdam, The Netherlands (26-29 May, 1998), IEEE Press, pp. 322-331.

....of expert rules. However, the applicabil Work done while visiting Bell Labs. ity of the event condition action rule paradigm goes beyond data management or expert systems. Such rules can be used in network management and monitoring [11] electronic commerce [9] security and access management [17], and other application areas to express policies collections of general principles specifying the desired behavior of a system. For instance, network management is mainly carried out by following policies about the behavior of the resources in the network. The policies are usually formulated ....

N. H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In Proc. of the 18th International Conference on Distributed Computing Systems, May 1998.

....of negotiation or bidding. Of course, there is yet more to do to fulfill our approach s promise, and achieve its ultimate goals. Further issues for future work include: meshing more closely with other aspects of contracts, e.g. transactions, payments, negotiation and communication protocols [5] [20] , EDI, and utility costbenefit; fleshing out the relationships to a variety of commercially important rule representations systems; representing constraints as in constraint satisfaction and Constraint Logic Programs; and representing delegation as in security authorization policies [17] An ....

Naftaly H. Minsky and Victoria Ungureanu. A Mechanism for Establishing Policies for Electronic Commerce. In Proc. 18th Intl. Conf. on Distributed Computing Systems (ICDCS), May 1998.

....of negotiation or bidding. Of course, there is yet more to do to fulfill our approach s promise, and achieve its ultimate goals. Further issues for future work include: meshing more closely with other aspects of contracts, e.g. transactions, payments, negotiation and communication protocols [5] [20] , EDI, and utility costbenefit; fleshing out the relationships to a variety of commercially important rule representations systems; representing constraints as in constraint satisfaction and Constraint Logic Programs; and representing delegation as in security authorization policies [17] An ....

Naftaly H. Minsky and Victoria Ungureanu. A Mechanism for Establishing Policies for Electronic Commerce. In Proc. 18th Intl. Conf. on Distributed Computing Systems (ICDCS), May 1998.

....between an agent and the rest of the world, regulate the behaviour of the agents and provide logical security. These coordinators can be seen as law enforcers where the law itself is defined and implemented by their MANIFOLD code; the idea of special law enforcing agents has been introduced in [11,12] and we are currently implementing them in MANIFOLD. Our paper complements (initial) work by others in the use of coordination models for modelling Electronic Commerce activities. More to the point, 8] describes such a model based on the Linda coordination framework. As we have argued in this ....

....a medium very similar to Linda s tuplespace. On the other hand, our framework is based on secured (by virtue of the underlying IWIM model) point to point communications with broadcasting limited only to publisizing the most necessary information. Finally, we mention again the work reported in [12], and we note that the laws described there can be implemented in MANIFOLD and, thus, can be used to complement the work described in this paper in deriving a framework based on MANIFOLD that enjoys security at both the logical and implementation levels. Acknowledgments This work has been ....

N. H. Minsky and V. Ungureanu, "A Mechanism for Establishing Policies for Electronic Commerce", 18th International Conference on Distributed Computing Systems (ICDCS'98), Amsterdam, The Netherlands, 26-29 May, 1998, IEEE Press (to appear).

No context found.

Minsky, N., Ungureanu, V.: A mechanism for establishing policies for electronic commerce. In: The 18th International Conference on Distributed Computing Systems (ICDCS). (1998) 322--331

....by an issuer trusted by participating parties. Expressing Contract Terms Contract terms can be quite naturally expressed by means of any formal language supporting event condition action (ECA) kind of rules. We are using here an extension of a language devised for support of control policies [12, 13] built on top of Prolog [6] But the nature of this language is, in a sense, of a secondary importance. 4 Operations on certificates issuer(pk,cert) binds pk to the public key of the issuer of certificate, cert; role(r,cert) binds r to the value of attribute role in cert, if one exists; ....

....ruling for one request does not interleave with those of any other request sent under the same contract. 7 Related Work There has been a growing interest in supporting e commerce contracts, and a variety of di#erent, and quite powerful, enforcement mechanisms have been devised, like for example [8, 15, 1, 12]. However, to the best of our knowledge, none of the frameworks proposed so far, express contracts by means of certificates, nor do they deal with contract annulment or 15 Request, Certificates pass info. give response Server Observer Revocation Server Repository trusted issuers ....

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS), pages 322--331, Amsterdam, The Netherlands, May 1998.

....controllers. Furthermore, messages sent across the network must be digitally signed by the sending controller, and the signature must be verified by the receiving controller, allowing the two controllers to trust each other. Such secure inter controller interaction has been implemented in Moses ([12]) 3.3. The Treatment of Certificates under LGI Under LGI, all agents are made equal at the time they join an L community. This is because the control state of all new members is identical and control states provide the only means for a law to make distinctions between agents. We now explain ....

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th InternationalConference on DistributedComputing Systems (ICDCS), pages 322--331, May 1998.

....controllers. Furthermore, messages sent across the network must be digitally signed by the sending controller, and the signature must be verified by the receiving controller, allowing the two controllers to trust each other. Such secure inter controller interaction has been implemented in Moses ([11]) 4.3 The Treatment of Certificates under LGI Under LGI, all agents are made equal at the time they join an L community. This is because the control state of all new members is identical and control states provide the only means for a law to make distinctions between agents. We now explain ....

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS), pages 322--331, May 1998.

....or due to its ignorance of the law; and (b) malicious violations. In this paper we will be concerned with inadvertent violations which is a typical software engineering concern. Enforcement of coordination laws with respect to malicious violations which is a security concern is discussed in [Minsky and Ungureanu 1998b; Minsky and Ungureanu 1998a] but we will make some comments about what such enforcement entails. The rest of this section is organized as follows: we start by introducing controllers, which are our main enforcement tools, we then discuss the manner in which controllers mediate L messages, ....

....law; and (b) malicious violations. In this paper we will be concerned with inadvertent violations which is a typical software engineering concern. Enforcement of coordination laws with respect to malicious violations which is a security concern is discussed in [Minsky and Ungureanu 1998b; Minsky and Ungureanu 1998a] but we will make some comments about what such enforcement entails. The rest of this section is organized as follows: we start by introducing controllers, which are our main enforcement tools, we then discuss the manner in which controllers mediate L messages, and we conclude with a ....

[Article contains additional citation context not shown here]

Minsky, N. and Ungureanu, V. 1998a. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS) (May 1998), pp. 322--331.

....(3) the enforcement needs to be decentralized, for scalability. LGI has been implemented in a toolkit called Moses, which has been applied to a broad range of coordination and control applications, including: on line reconfiguration of distributed systems [6] security [4] and electronic commerce [3]. A group of agents interacting via LGI under a given law L is called an L group. LGI distinguishes between two kinds of L groups, called explicit and implicit groups, that di#er in the manner in which a group is deployed and in the management of its membership. Explicit groups have been ....

....controllers. Furthermore, messages sent across the network must be digitally signed by the sending controller, and the signature must be verified by the receiving controller, allowing the two controllers to trust each other. Such secure inter controller interaction has been implemented in Moses ([3]) 2.3 Naming Within A Community As already mentioned, when an agent joins a community, it must have a way of naming and locating other members of the community. After all, one joins a community only if one wishes to interact with some of its members. In the case of an explicit group, where ....

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS), pages 322--331, May 1998.

....change. But such centralized enforcement of enterprise rules is not scalable, and it becomes a bottleneck, and a dangerous single point of failure, for large distributed enterprises. In this paper we show how the previously developed mechanism for establishing electronic commerce policies [6] may alleviate this difficulties. This mechanism, which is based on lawgoverned interaction (LGI) 4] makes a strict separation between the formal statement of a policy, which is called law, and the enforcement of this law, which is carried out by a set of policy independent trusted ....

...., and each controller maintains the control states of the agents under its jurisdiction. Consider, for example, an agent x sending a P message m to an agent y, assuming that both agents have joined the policy group GP . For a discussion of how does one join a policygroup the reader is referred to [6]. Message m is forwarded to C x the controller assigned to x. When this message arrives at C x , it generates a sent(x,m,y) event at it. C x then evaluates the ruling of law LP for this event, taking into account the control state CS x that it maintains, and carries out this ruling. 1 y must ....

[Article contains additional citation context not shown here]

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS), pages 322--331, May 1998.

....it is part of, thus leading to a maintenance nightmare. We believe, therefore, that it is important for the following principle to be satisfied: Principle 3 Inter operation between e commerce policies should maintain their privacy, autonomy and mutual transparency. We have shown in [10] how fairly sophisticated contracts between autonomous clients and vendors can be formulated using what we call Law Governed Interaction (LGI) The model was limited however in the sense that policies were viewed as isolated entities. In this paper we will describe how LGI has been extended, in ....

....an heterogeneous group of distributed agents to interact with each other, with confidence that an explicitly specified set of rules of engagement called the law of the group is strictly observed by each of its member. Here we provide a brief overview of LGI, for more detailed discussion see [10, 11]. The central concept of LGI is that of a policy P, defined as a four tuple: #M,G, CS, L# where M is the set of messages regulated by this policy, G is an open and heterogeneous group of agents that exchange messages belonging to M; CS is a mutable set CS x x # G of what we ....

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS), pages 322--331, May 1998.

....that supports such message passing. We, on the other hand, can provide secure message passing as one of many types of policies expressible under LGI, and without changing the Linda model itself. 3. LAW GOVERNEDINTERACTION (LGI) This section is a summary and adaptation of the description of LGI in [12]. This mode of interaction is currently supported by a toolkit called Moses, which is implemented mostly in Java 2 . The organization of this section is outlined after we introduce our concept of coordination policy, or policy, for short. 3.1 The Concept of a Coordination Policy Definition ....

....exchange P messages under a policy P, it needs to engage in a connection protocol with the secretary. The purpose of the protocol is to assign x to a controller Cx which is fed the law of P and the control state of x (for a detailed presentation of this protocol the reader is referred to [12]) We are in position now to explain how the exchange of L messages gets to be mediated by controllers, and how this 3 CSx sent x agent L arrived forward CS controller deliver Linda tuple space ts ts arrived forward sent deliver a primitive operation Legend a ....

[Article contains additional citation context not shown here]

N. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th International Conference on Distributed Computing Systems (ICDCS), pages 322--331, May 1998.

....each controller maintains the control states of the agents under its jurisdiction. Consider, for example, an agent x sending a P message m to an agent y, assuming that both agents have joined the policy group GP . For a discussion of how does one join a policy group the reader is referred to [5]. Message m is forwarded to C x the controller assigned to x. When this message arrives at C x , it generates a sent(x,m,y) event at it. C x then evaluates the ruling of law LP for this event, taking into account the control state CS x that it maintains, and carries out this ruling. ....

....exchanging P messages. It is even sufficient to protect against malicious violations of the law, provided one can trust the OS kernel of the hosts, which may be the case within the intranet of a given enterprise. As to the security of this mechanism over the Internet, the reader is referred to [6, 5]. 3. Establishing the Budgeted Payment Policy (P BP ) The components of this particular policy are as follows: the group GBP consists of the set of employees allowed to make purchases in the department, a designated purchase officer and the EDI gateways for communicating with the vendors. ....

[Article contains additional citation context not shown here]

N.H. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In The 18th InternationalConference on DistributedComputing Systems (ICDCS), pages 322--331, May 1998.

No context found.

62 N.H. Minsky, V. Ungureanu. A Mechanism for Establishing Policies for Electronic Commerce. In Proc. of the 18th International Conference on Distributed Computing Systems (ICDCS 1998.

No context found.

Naftaly Minsky and Victoria Ungureanu. A mechanism for establishing policies for electronic commerce. In Proc. of the 18th Int. Conf. on Distributed Computing Systems (ICDCS), May 1998.

No context found.

N. Minsky and V. Ungureanu. A mechanism for establishing policies for electronic commerce. In Proc. of the 18th Int. Conf. on Distributed Computing Systems (ICDCS), May 1998.

No context found.

N. Minsky, V. Ungurcanu, A Mechanism for Establishing Policies for Electronic Commerce, In the 18th International Conference on Distributed Computing Systems (ICDCS). May 1998

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC