The necessity of the agricultural policy-based finance in terms of supporting the new village construction is analyzed: in the first place, the theoretical roots of agricultural policy-based finance supporting new vil...The necessity of the agricultural policy-based finance in terms of supporting the new village construction is analyzed: in the first place, the theoretical roots of agricultural policy-based finance supporting new village construction are "market failure" and "government intervention"; in the second place, the continual decline of agriculture and the "rural financial market failure" in recent years have become the objective evidence and historical mission for agricultural policy-based finance to support new village construction; in the third place, the combination of agricultural policy-based finance and new village construction is conducive to solving the "three agriculture" problems and facilitating the reform of new village construction. The feasibility of the support is analyzed: firstly, agricultural policy-based finance boasts the status and position of the "primary drive" in new village construction; secondly, the nation continuously deepens the reform of rural financial system and policy-based banks and strengthens the functions of Agricultural Development Bank, which provides policies for agricultural policy-based finance to support new village construction; thirdly, the 14 years' reform and development of Agricultural Development Bank and the eleventh five year plan lay sound practical basis for the support of agricultural policy-based finance to new village construction. Based on the necessity and feasibility, the following six aspects are analyzed to fully display the function of the "first engine" of agricultural policy-related finance to new village construction. Firstly, strengthening the credit and loan aid to grain and cotton and some other agricultural products in the circulation domain; secondly, strengthening the credit and loan aid to agricultural industrialization in processing field; thirdly, intensifying the credit and loan aid to agricultural comprehensive development, rural infrastructure construction, application and promotion of agricultural technology, agricultural production means and agricultural ecological construction; fourthly, intensifying the credit and loan aid to rural special group and regional development; fifthly, intensifying the credit and loan aid to agriculture and rural emergency response system and social security system; sixthly, strengthening the credit and loan aid to agriculture and the intermediary construction of rural financial services.展开更多
Although the existing group signature schemes from lattice have been optimized for efficiency,the signing abilities of eachmember in the group are relatively single.It may not be suitable for complex applications.Insp...Although the existing group signature schemes from lattice have been optimized for efficiency,the signing abilities of eachmember in the group are relatively single.It may not be suitable for complex applications.Inspired by the pioneering work of Bellare and Fuchsbauer,we present a primitive called policy-based group signature.In policy-based group signatures,group members can on behalf of the group to sign documents that meet their own policies,and the generated signatures will not leak the identity and policies of the signer.Moreover,the group administrator is allowed to reveal the identity of signer when a controversy occurs.Through the analysis of application scenarios,we concluded that the policy-based group signature needs to meet two essential security properties:simulatability and traceability.And we construct a scheme of policy-based group signature from lattice through techniques such as commitment,zero-knowledge proof,rejection sampling.The security of our scheme is proved to be reduced to the module short integer solution(MSIS)and module learning with errors(MLWE)hard assumptions.Furthermore,we make a performance comparison between our scheme and three lattice-based group signature schemes.The result shows that our scheme has more advantages in storage overhead and the sizes of key and signature are decreased roughly by 83.13%,46.01%,respectively,compared with other schemes.展开更多
IP billing is not only a basic functionality to operate IP sen'ices, but also it is fundamental to offer customers with a stable and QoS-enabled network environment. As IP-based network has been widely agreed to be t...IP billing is not only a basic functionality to operate IP sen'ices, but also it is fundamental to offer customers with a stable and QoS-enabled network environment. As IP-based network has been widely agreed to be the core network of NGN, and existing IP billing system is too simple to fulfill the emerging requirements, the next generation IP billing has become an interesting topic in recent years. Policy-based management brings flexibility and scalability to systems by describing management logic and functions through policies, and thus reduces the complexity of the management of large-scale systems. Working on existing efforts, this paper proposed an improved IETF policy framework based upon which a policy-based billing management architecture for the next generation IP-based network was presented. Then a prototype with some basic functionalities was developed. The results of the experiment validated the expected improvements specified in this paper.展开更多
This paper presents the design and implementation of the policy management layer of the softswitch system, which is currently under development in our lab. The distinguish key feature of our policy management subsyste...This paper presents the design and implementation of the policy management layer of the softswitch system, which is currently under development in our lab. The distinguish key feature of our policy management subsystem is that the Parlay policy management architecture and the specific technical requirements of softswitch system management are closely incorporated. In this way, not only network providers but also authorized 3rd party application providers and application developers can develop services and applications to manage the access and use of network resources on a per user or application basis to best support established business objectives. The material presented in this document is heavily based on the work of Parlay policy management and IETF policy framework working group.展开更多
The wide variety of smart embedded computing devices and their increasing number of applications in our daily life have created new op- portunities to acquire knowledge from the physical world anytime and anywhere, wh...The wide variety of smart embedded computing devices and their increasing number of applications in our daily life have created new op- portunities to acquire knowledge from the physical world anytime and anywhere, which is envisioned as the"Internet of Things" (IoT). Since a huge number of heterogeneous resources are brought in- to IoT, one of the main challenges is how to effi- ciently manage the increasing complexity of IoT in a scalable, flexNle, and autonomic way. Further- more, the emerging IoT applications will require collaborations among loosely coupled devices, which may reside in various locations of the Inter- net. In this paper, we propose a new IoT network management architecture based on cognitive net- work management technology and Service-Orien- ted Architecture to provide effective and efficient network management of loT.展开更多
Traditional SNMP-based network management can not deal with the task of managing large-scaled distributed network,while policy-based management is one of the effective solutions in network and distributed systems mana...Traditional SNMP-based network management can not deal with the task of managing large-scaled distributed network,while policy-based management is one of the effective solutions in network and distributed systems management.However,cross-vendor hardware compatibility is one of the limitations in policy-based management.Devices existing in current network mostly support SNMP rather than Common Open Policy Service(COPS)protocol.By analyzing traditional network management and policy-based network management,a scalable network management framework is proposed.It is combined with Internet Engineering Task Force(IETF)framework for policy-based management and SNMP-based network management.By interpreting and translating policy decision to SNMP message,policy can be executed in traditional SNMP-based device.展开更多
The management of clouds comprised of hundreds of hosts and virtual machines present challenging problems to administrators in ensuring that performance agreements are met and that resources are efficiently utilized. ...The management of clouds comprised of hundreds of hosts and virtual machines present challenging problems to administrators in ensuring that performance agreements are met and that resources are efficiently utilized. Automated approaches can help in managing such environments. Autonomic managers using policy-based management can provide a useful approach to such automation. We outline how collections of collaborating autonomic managers in cloud can be a step towards better management of clouds. We describe how a hierarchy of policy-based autonomic managers can collaborate using messages. The messages and when to communicate is inferred automatically from the policies given to the managers. We evaluate the approach via a prototype inspired by a cloud virtualized infrastructure and show how collaboration between managers in a hierarchy can improve the response time of a web server and avoid service level agreement violations. Results of three different scenarios shows the importance of collaboration between managers at different authority levels and how this collaboration can help to increase efficiency of current infrastructures.展开更多
The layer 2 network technology is extending beyond its traditional local area implementation and finding wider acceptance in provider’s metropolitan area networks and large-scale cloud data center networks. This is m...The layer 2 network technology is extending beyond its traditional local area implementation and finding wider acceptance in provider’s metropolitan area networks and large-scale cloud data center networks. This is mainly due to its plug-and-play capability and native mobility support. Many efforts have been put to increase the bisection bandwidth in a layer 2 network, which has been constrained by the spanning tree protocol that a layer 2 network uses for preventing looping. The recent trend is to incorporate layer 3’s routing approach into a layer 2 network so that multiple paths can be used for forwarding traffic between any source-destination (S-D) node pair. ECMP (equal cost multipath) is one such example. However, ECMP may still be limited in generating multiple paths due to its shortest path (lowest cost) requirement. In this paper, we consider a non-shortest-path routing approach, called EPMP (Equal Preference Multi-Path) that can generate more paths than ECMP. The EPMP is based on the ordered semi-group algebra. In the EPMP routing, paths that differ in traditionally-defined costs, such as hops, bandwidth, etc., can be made equally preferred and thus become candidate paths. We found that, in comparison with ECMP, EPMP routing not only generates more paths, provides higher bisection bandwidth, but also allows bottleneck links in a hierarchical network to be identified when different traffic patterns are applied. EPMP is also versatile in that it can use various ways of path preference calculations to control the number and the length of paths, making it flexible (like policy-based routing) but also objective (like shortest path first routing) in calculating preferred paths.展开更多
In order to achieve an intelligent and automated self-management network,dynamic policy configuration and selection are needed.A certain policy only suits to a certain network environment.If the network environment ch...In order to achieve an intelligent and automated self-management network,dynamic policy configuration and selection are needed.A certain policy only suits to a certain network environment.If the network environment changes,the certain policy does not suit any more.Thereby,the policy-based management should also have similar "natural selection" process.Useful policy will be retained,and policies which have lost their effectiveness are eliminated.A policy optimization method based on evolutionary learning was proposed.For different shooting times,the priority of policy with high shooting times is improved,while policy with a low rate has lower priority,and long-term no shooting policy will be dormant.Thus the strategy for the survival of the fittest is realized,and the degree of self-learning in policy management is improved.展开更多
Traditional grid computing focuses on the movement of data to compute resources and the management of large scale simulations. Data grid computing focuses on moving the operations to the storage location and on operat...Traditional grid computing focuses on the movement of data to compute resources and the management of large scale simulations. Data grid computing focuses on moving the operations to the storage location and on operations on data collections. We present three types of data grid operations that facilitate data driven research: the manipulation of time series data, the reproducible execution of workflows, and the mapping of data access to software-defined networks. These data grid operations have been implemented as operations on collections within the NSF DataNet Federation Consortium project. The operations can be applied at the remote resource where data are stored, improving the ability of researchers to interact with large collections.展开更多
文摘The necessity of the agricultural policy-based finance in terms of supporting the new village construction is analyzed: in the first place, the theoretical roots of agricultural policy-based finance supporting new village construction are "market failure" and "government intervention"; in the second place, the continual decline of agriculture and the "rural financial market failure" in recent years have become the objective evidence and historical mission for agricultural policy-based finance to support new village construction; in the third place, the combination of agricultural policy-based finance and new village construction is conducive to solving the "three agriculture" problems and facilitating the reform of new village construction. The feasibility of the support is analyzed: firstly, agricultural policy-based finance boasts the status and position of the "primary drive" in new village construction; secondly, the nation continuously deepens the reform of rural financial system and policy-based banks and strengthens the functions of Agricultural Development Bank, which provides policies for agricultural policy-based finance to support new village construction; thirdly, the 14 years' reform and development of Agricultural Development Bank and the eleventh five year plan lay sound practical basis for the support of agricultural policy-based finance to new village construction. Based on the necessity and feasibility, the following six aspects are analyzed to fully display the function of the "first engine" of agricultural policy-related finance to new village construction. Firstly, strengthening the credit and loan aid to grain and cotton and some other agricultural products in the circulation domain; secondly, strengthening the credit and loan aid to agricultural industrialization in processing field; thirdly, intensifying the credit and loan aid to agricultural comprehensive development, rural infrastructure construction, application and promotion of agricultural technology, agricultural production means and agricultural ecological construction; fourthly, intensifying the credit and loan aid to rural special group and regional development; fifthly, intensifying the credit and loan aid to agriculture and rural emergency response system and social security system; sixthly, strengthening the credit and loan aid to agriculture and the intermediary construction of rural financial services.
基金supported by the National Natural Science Foundation of China(61802117)Support Plan of Scientific and Technological Innovation Team in Universities of Henan Province(20IRTSTHN013)the Youth Backbone Teacher Support Program of Henan Polytechnic University under Grant(2018XQG-10).
文摘Although the existing group signature schemes from lattice have been optimized for efficiency,the signing abilities of eachmember in the group are relatively single.It may not be suitable for complex applications.Inspired by the pioneering work of Bellare and Fuchsbauer,we present a primitive called policy-based group signature.In policy-based group signatures,group members can on behalf of the group to sign documents that meet their own policies,and the generated signatures will not leak the identity and policies of the signer.Moreover,the group administrator is allowed to reveal the identity of signer when a controversy occurs.Through the analysis of application scenarios,we concluded that the policy-based group signature needs to meet two essential security properties:simulatability and traceability.And we construct a scheme of policy-based group signature from lattice through techniques such as commitment,zero-knowledge proof,rejection sampling.The security of our scheme is proved to be reduced to the module short integer solution(MSIS)and module learning with errors(MLWE)hard assumptions.Furthermore,we make a performance comparison between our scheme and three lattice-based group signature schemes.The result shows that our scheme has more advantages in storage overhead and the sizes of key and signature are decreased roughly by 83.13%,46.01%,respectively,compared with other schemes.
基金Supported by the High Technology Reseearch and Development Plogranune of China (No. 2002AA121062) and the National Natural Science Foundation of China ( No. 90204002 ).
文摘IP billing is not only a basic functionality to operate IP sen'ices, but also it is fundamental to offer customers with a stable and QoS-enabled network environment. As IP-based network has been widely agreed to be the core network of NGN, and existing IP billing system is too simple to fulfill the emerging requirements, the next generation IP billing has become an interesting topic in recent years. Policy-based management brings flexibility and scalability to systems by describing management logic and functions through policies, and thus reduces the complexity of the management of large-scale systems. Working on existing efforts, this paper proposed an improved IETF policy framework based upon which a policy-based billing management architecture for the next generation IP-based network was presented. Then a prototype with some basic functionalities was developed. The results of the experiment validated the expected improvements specified in this paper.
文摘This paper presents the design and implementation of the policy management layer of the softswitch system, which is currently under development in our lab. The distinguish key feature of our policy management subsystem is that the Parlay policy management architecture and the specific technical requirements of softswitch system management are closely incorporated. In this way, not only network providers but also authorized 3rd party application providers and application developers can develop services and applications to manage the access and use of network resources on a per user or application basis to best support established business objectives. The material presented in this document is heavily based on the work of Parlay policy management and IETF policy framework working group.
基金supported by the National Sci.&Tech. Major Project of China(No.2010ZX03004-002)the National Natural Science Foundation of China(No.60972083)
文摘The wide variety of smart embedded computing devices and their increasing number of applications in our daily life have created new op- portunities to acquire knowledge from the physical world anytime and anywhere, which is envisioned as the"Internet of Things" (IoT). Since a huge number of heterogeneous resources are brought in- to IoT, one of the main challenges is how to effi- ciently manage the increasing complexity of IoT in a scalable, flexNle, and autonomic way. Further- more, the emerging IoT applications will require collaborations among loosely coupled devices, which may reside in various locations of the Inter- net. In this paper, we propose a new IoT network management architecture based on cognitive net- work management technology and Service-Orien- ted Architecture to provide effective and efficient network management of loT.
基金National Nature Science Foundation of China(No.60534020)Cultivation Fundation of the Key Scientific and Technical Innovation Project from Ministry of Education of China(No.706024)International Science Cooperation Foundation of Shanghai,China(No.061307041)
文摘Traditional SNMP-based network management can not deal with the task of managing large-scaled distributed network,while policy-based management is one of the effective solutions in network and distributed systems management.However,cross-vendor hardware compatibility is one of the limitations in policy-based management.Devices existing in current network mostly support SNMP rather than Common Open Policy Service(COPS)protocol.By analyzing traditional network management and policy-based network management,a scalable network management framework is proposed.It is combined with Internet Engineering Task Force(IETF)framework for policy-based management and SNMP-based network management.By interpreting and translating policy decision to SNMP message,policy can be executed in traditional SNMP-based device.
文摘The management of clouds comprised of hundreds of hosts and virtual machines present challenging problems to administrators in ensuring that performance agreements are met and that resources are efficiently utilized. Automated approaches can help in managing such environments. Autonomic managers using policy-based management can provide a useful approach to such automation. We outline how collections of collaborating autonomic managers in cloud can be a step towards better management of clouds. We describe how a hierarchy of policy-based autonomic managers can collaborate using messages. The messages and when to communicate is inferred automatically from the policies given to the managers. We evaluate the approach via a prototype inspired by a cloud virtualized infrastructure and show how collaboration between managers in a hierarchy can improve the response time of a web server and avoid service level agreement violations. Results of three different scenarios shows the importance of collaboration between managers at different authority levels and how this collaboration can help to increase efficiency of current infrastructures.
文摘The layer 2 network technology is extending beyond its traditional local area implementation and finding wider acceptance in provider’s metropolitan area networks and large-scale cloud data center networks. This is mainly due to its plug-and-play capability and native mobility support. Many efforts have been put to increase the bisection bandwidth in a layer 2 network, which has been constrained by the spanning tree protocol that a layer 2 network uses for preventing looping. The recent trend is to incorporate layer 3’s routing approach into a layer 2 network so that multiple paths can be used for forwarding traffic between any source-destination (S-D) node pair. ECMP (equal cost multipath) is one such example. However, ECMP may still be limited in generating multiple paths due to its shortest path (lowest cost) requirement. In this paper, we consider a non-shortest-path routing approach, called EPMP (Equal Preference Multi-Path) that can generate more paths than ECMP. The EPMP is based on the ordered semi-group algebra. In the EPMP routing, paths that differ in traditionally-defined costs, such as hops, bandwidth, etc., can be made equally preferred and thus become candidate paths. We found that, in comparison with ECMP, EPMP routing not only generates more paths, provides higher bisection bandwidth, but also allows bottleneck links in a hierarchical network to be identified when different traffic patterns are applied. EPMP is also versatile in that it can use various ways of path preference calculations to control the number and the length of paths, making it flexible (like policy-based routing) but also objective (like shortest path first routing) in calculating preferred paths.
基金National Natural Science Foundation of China(No.60534020)Cultivation Fund of the Key Scientific and Technical Innovation Project from Ministry of Education of China(No.706024)International Science Cooperation Foundation of Shanghai,China(No.061307041)
文摘In order to achieve an intelligent and automated self-management network,dynamic policy configuration and selection are needed.A certain policy only suits to a certain network environment.If the network environment changes,the certain policy does not suit any more.Thereby,the policy-based management should also have similar "natural selection" process.Useful policy will be retained,and policies which have lost their effectiveness are eliminated.A policy optimization method based on evolutionary learning was proposed.For different shooting times,the priority of policy with high shooting times is improved,while policy with a low rate has lower priority,and long-term no shooting policy will be dormant.Thus the strategy for the survival of the fittest is realized,and the degree of self-learning in policy management is improved.
文摘Traditional grid computing focuses on the movement of data to compute resources and the management of large scale simulations. Data grid computing focuses on moving the operations to the storage location and on operations on data collections. We present three types of data grid operations that facilitate data driven research: the manipulation of time series data, the reproducible execution of workflows, and the mapping of data access to software-defined networks. These data grid operations have been implemented as operations on collections within the NSF DataNet Federation Consortium project. The operations can be applied at the remote resource where data are stored, improving the ability of researchers to interact with large collections.
