Title :
Enriching the expressive power of security labels
Author :
Gong, Li ; Qian, Xiaolei
Author_Institution :
Comput. Sci. Lab., SRI Int., Menlo Park, CA, USA
fDate :
10/1/1995 12:00:00 AM
Abstract :
Common security models such as Bell-LaPadula focus on the control of access to sensitive data but leave some important systems issues unspecified, such as the implementation of read-only objects, garbage collection, and object upgrade and downgrade paths. Consequently, different implementations of the same security model may have conflicting operational and security semantics. We propose the use of more expressive security labels for specifying these system issues within the security model, so that the semantics of a system design are precisely understood and are independent of implementation details
Keywords :
authorisation; security of data; expressive security labels; garbage collection; multilevel security; object downgrade paths; object label; object upgrade paths; read-only objects; security labels; security models; security semantics; systems issues; Computer science; Data security; Information security; Lattices; Multilevel systems; Permission; Petroleum; Power system modeling; Power system security;
Journal_Title :
Knowledge and Data Engineering, IEEE Transactions on
