PASSIVE aimed to develop an improved model of security for virtualised systems that ensures that adequate separation of concerns can be achieved even in large-scale deployments, and threats from co-hosted operating systems are detected and dealt with. To achieve these goals, PASSIVE proposes a policy-based security architecture that allows security provisions to be easily specified and efficiently addressed. NICS designed and developed the authorization component of the PASSIVE system, as well as contributed to the authentication module.