Title :
A Linux Implementation of Temporal Access Controls
Author :
Chiang, Ken ; Nguyen, Thuy D. ; Irvine, Cynthia E.
Author_Institution :
Naval Postgraduate Sch., Monterey
Abstract :
Control of access to information based upon temporal attributes can add another dimension to access control. To demonstrate the feasibility of operating system-level support for temporal access controls, the Time Interval File Protection System (TIFPS), a prototype of the Time Interval Access Control (TIAC) model, has been implemented by modifying Linux extended attributes to include temporal metadata associated both with files and users. The Linux Security Module was used to provide hooks for temporal access control logic. In addition, a set of utilities was modified to be TIFPS-aware. These tools permit users to view and manage the temporal attributes associated with their files and directories. Functional, performance, and concurrency testing were conducted. The ability of TIFPS to grant or revoke access in the future, as well to limit access to specific time intervals enhances traditional information control and sharing.
Keywords :
Linux; metacomputing; security of data; Linux implementation; information control; information sharing; operating system-level support; temporal access controls; temporal metadata; time interval access control; time interval file protection system; Access control; Authorization; Concurrent computing; Conferences; Linux; Logic; Operating systems; Protection; Prototypes; Security;
Conference_Titel :
Information Assurance and Security Workshop, 2007. IAW '07. IEEE SMC
Conference_Location :
West Point, NY
Print_ISBN :
1-4244-1304-4
Electronic_ISBN :
1-4244-1304-4
DOI :
10.1109/IAW.2007.381948
