Skip to Main Content
This paper presents a framework for internet real-name system development that introduces a new phase in the usual procedure: Active Real-name System and Automatic Security Surveillance. The main goal of this paper is to bridge the gap between the real-name requirement analysis and the internet crime implementation through the generation of a model of the security system architecture plus the security policies associated with the components of the model that have to enforce them. For this purpose, the design phase is composed of two complementary steps: an architectural model and a set of design-level security policies. The main advantages and desired characteristics of these models are analyzed; they are related to existing work in the area; and future research directions are pointed.