DocumentCode :
2104504
Title :
A dynamic authorization model based on security label and role
Author :
Gao, Jing ; Zhang, Bin ; Ren, Zhiyu
Author_Institution :
Zhengzhou Inf. Sci. & Technol. Inst., Zhengzhou, China
fYear :
2010
fDate :
17-19 Dec. 2010
Firstpage :
650
Lastpage :
653
Abstract :
Due to the requirements of dynamic and mandatory access control for important information systems in the classified security protecting environment, a dynamic authorization model based on security label and role (SLR-DAM) is proposed. Firstly, element sets and authorization rules are enumerated in a formalized way. Using security label together with label role we defined, MAC is implemented with the RBAC mechanism. By incorporating time and location into authorization decision, permissions of the user can be dynamically adapted. Then an authorization framework based on SLR-DAM is proposed. Lastly, security characteristic of SLR-DAM is analyzed by an application scenario.
Keywords :
authorisation; information systems; MAC; RBAC; SLR-DAM; authorization decision; authorization framework; authorization rules; dynamic authorization model; element sets; information systems; mandatory access control; security characteristics; security label; security protecting environment; Adaptation model; Authorization; Companies; Information systems; Marketing and sales; MAC; RBAC; authorization model; classified security protection;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Information Theory and Information Security (ICITIS), 2010 IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-6942-0
Type :
conf
DOI :
10.1109/ICITIS.2010.5689504
Filename :
5689504
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2104504
بازگشت