Title :
The Application of Chinese Wall Policy in Data Leakage Prevention
Author :
Jun, Ma ; Zhiying, Wang ; Jiangchun, Ren ; Jiangjiang, Wu ; Yong, Cheng ; Songzhu, Mei
Author_Institution :
Sch. of Comput., Nat. Univ. of Defense Technol., Changsha, China
Abstract :
The primary objective of Data Leakage Prevention (DLP) is to control the data usage by authorized users. Traditional control mechanisms are mostly implemented based on security domains and deploy strict polices on actions spanning different domains which will decrease the usability and flexibility of the system. The Chinese Wall Policy combines discretionary and mandatory aspects of access control so that it is a good choice for DLP. This paper extends the traditional conflict and alliance relationship and presents an efficient framework ACWF. The ACWF maintains dynamic relationship between different data objects and provides reference mechanism to confine the corresponding usage domain. We present an applicable scenario analysis and implement a secure removable storage device based on ACWF. The results show the efficiency of ACWF in DLP application.
Keywords :
authorisation; storage management; virtual machines; ACWF; Chinese wall policy; DLP; access control discretionary aspects; access control mandatory aspects; active Chinese wall framework; control mechanisms; data leakage prevention; data objects; data usage; featherweight virtual machine; reference mechanism; secure removable storage device; security domains; Companies; Computational modeling; Computers; Data models; Secure storage; Security; Usability; Chinese Wall policy; Data Leakage Prevention (DLP); ally; conflict relation; feather-weight virtual machine (FVM); virtualization;
Conference_Titel :
Communication Systems and Network Technologies (CSNT), 2012 International Conference on
Conference_Location :
Rajkot
Print_ISBN :
978-1-4673-1538-8
DOI :
10.1109/CSNT.2012.111
