Title :
A User Access Policy Based on Dynamic Sensitivity Label
Author :
Bo, Li ; Chunxia, Jiang ; Yilin, Lin
Author_Institution :
Chongqing Univ. of Technol., Chongqing, China
Abstract :
The analysis of Isandhu method [1] points out that it strengthens role relations and provides the support to the notation of trusted subject by using assistant role hierarchies. Additionally, some errors of it are revealed, such as roles leaping, authority magnifying, hierarchical model confusing, etc. Then, a user access policy base on dynamic sensitivity label is presented, it uses dynamic sensitivity label to mark user´s private rights and objects´ security level, and analyses the constraints to access, and helps user to access objects with speediness and flexibility. It carries out the mandatory access control with confidentiality and integrity, and provides a theoretical basis for flexible and efficient access control policy in the large enterprise systems.
Keywords :
access control; data integrity; security of data; Isandhu method; confidentiality; dynamic sensitivity label; enterprise systems; hierarchical model; integrity; mandatory access control; user access policy; Access control; Adaptation models; Computational modeling; Sensitivity; Writing; Zirconium; BLP; Dynamic Sensitivity Label; Mandatory Access Control; RBAC;
Conference_Titel :
Network Computing and Information Security (NCIS), 2011 International Conference on
Conference_Location :
Guilin
Print_ISBN :
978-1-61284-347-6
DOI :
10.1109/NCIS.2011.11
