The project aims at the development and implementation of appropriate security policies and mechanisms that allow one to incrementally integrate foreign software packages into an existing corporate network, without compromising the security of the already existing infrastructure. One focus of the work is to develop a language in which these policies are sufficiently simple writable such that IT managers can overlook the consequences of their decisions with respect to the security of the entire system and adjust them if necessary. Another focus is the enforcement of these security policies by means of a suitable combinations of various established security mechanisms (such as access control or virtualization techniques).
Partners
- Univention GmbH
