A dynamic authorization model based on security label and role

Author

Gao, Jing ; Zhang, Bin ; Ren, Zhiyu

Author_Institution

Zhengzhou Inf. Sci. & Technol. Inst., Zhengzhou, China

fYear

2010

fDate

17-19 Dec. 2010

Firstpage

650

Lastpage

653

Abstract

Due to the requirements of dynamic and mandatory access control for important information systems in the classified security protecting environment, a dynamic authorization model based on security label and role (SLR-DAM) is proposed. Firstly, element sets and authorization rules are enumerated in a formalized way. Using security label together with label role we defined, MAC is implemented with the RBAC mechanism. By incorporating time and location into authorization decision, permissions of the user can be dynamically adapted. Then an authorization framework based on SLR-DAM is proposed. Lastly, security characteristic of SLR-DAM is analyzed by an application scenario.

Keywords

authorisation; information systems; MAC; RBAC; SLR-DAM; authorization decision; authorization framework; authorization rules; dynamic authorization model; element sets; information systems; mandatory access control; security characteristics; security label; security protecting environment; Adaptation model; Authorization; Companies; Information systems; Marketing and sales; MAC; RBAC; authorization model; classified security protection;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Theory and Information Security (ICITIS), 2010 IEEE International Conference on

Conference_Location

Beijing

Print_ISBN

978-1-4244-6942-0

Type

conf

DOI

10.1109/ICITIS.2010.5689504

Filename

5689504