Information Technology Reference
In-Depth Information
process and policy separation needs to be achieved including remote Application
Hosting and some Cloud Computing platforms.
Fig. 8.4:
Overview of the architecture of the Distributed Access Management capability
The policy decision point (PDP) at the core of the access management capability
may be exposed as a hosted service, be deployed as a component of a policy deci-
sion making capability with a larger scope (such as a federated identity and access
management capability) or be an integral part of the policy enforcement (PEP) func-
tion. It is also possible to deploy the overall access management capability as a
managed service, if needed.
8.4 Common Capabilities for Managing Software Licences
Technological innovation on how software licenses are provisioned and managed
throughout the service life-cycle is necessary for enabling commercial applications
from independent software vendors (ISVs) on SOI and Cloud Computing environ-
ments. As explained in Dimitrakos (2009a) small and medium sized enterprises
(SME) - especially from the engineering community - stand to profit from this.
For example, very few enterprises maintain their own simulation applications.
Instead - in contrast to academic institutions - commercial applications from ISVs
are commonly used with associated client-server based licensing. The authorization
of these client-server based license mechanisms relies on an IP-centric scheme: a
client within a specific range of IP-addresses is allowed to access the licence server.
Due to this IP-centric authorization, arbitrary users of any shared IT resource may
access an exposed licence server, irrespective of whether or not they are authorised
to do so. In the absence of controlled access to a local or remote licence server
that is suitable for HPC utility and in-cloud hosting, it is often not possible to use
