A fine-grained access control model with secure label on data resource

Author

Lijie Gao ; Lianzhong Liu ; Ze Jin ; Chunyan Han

Author_Institution

Beijing Key Lab. of Network Technol., Beihang Univ., Beijing, China

fYear

2013

fDate

12-13 Oct. 2013

Firstpage

14

Lastpage

18

Abstract

With the demand driven of Web-Based security and the privacy protection for sensitive information, the research on Fine-Grained mandatory access control for data resources in database is getting more attention. A Fine-Grained access control model with security label features (SL-FGAC) is proposed. The data resources are divided by granularity at least on column-level and record-level, where the record-level is discussed in particular. The allocation rules for security labels and constraints on permission and role assignments are argued. Finally the model is applied to an actual access control system, where the processes of classification approval, authorization and access control are discussed in detail, especially adding the limit note expressed as filter conditions for the access control on record-level resources.

Keywords

Internet; authorisation; data protection; database management systems; pattern classification; SL-FGAC; Web-based security; allocation rules; authorization; classification approval; column-level resources; data resources; database; fine-grained mandatory access control model; privacy protection; record-level resources; security constraints; security label features; security labels; sensitive information; Authorization; Computational modeling; Data models; Databases; Educational institutions; Fine-Grained; access control; data resource; secure label;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Network Technology (ICCSNT), 2013 3rd International Conference on

Conference_Location

Dalian

Type

conf

DOI

10.1109/ICCSNT.2013.6967054

Filename

6967054