Title :
A Novel Multi-level Security Policy Model for Protecting Documents
Author :
Wang, Hui ; Jia, Zongpu ; Lu, Bibo ; Shen, Zihao
Author_Institution :
Dept. of Comput. Sci. & Technol., Henan Polytech. Univ., Jiaozuo, China
Abstract :
Insider threat is widely recognized as an utmost important issue for organization security management. Documents are often considered as the most important information assets so that they will be the chief target of insider misuse. The former coarse grained security policies, such as "the principle of least privilege" and "separate of duty", are not enough to address insider threat for security of documents. In this paper, we present a novel multi-level security policy model and related algorithms on information flow of documents. With different system context, it will generate dynamic restrictions on information flow, and prohibit probable hidden channels of information flow.
Keywords :
document handling; security of data; document protection; information assets; information flow; insider threat; multi-level security policy model; organization security management; Computer network management; Computer science; Computer security; Conference management; Context modeling; Electronic mail; Information security; Invasive software; Lattices; Protection; information flow; insider threat; security policy;
Conference_Titel :
Multimedia Information Networking and Security, 2009. MINES '09. International Conference on
Conference_Location :
Hubei
Print_ISBN :
978-0-7695-3843-3
Electronic_ISBN :
978-1-4244-5068-8
DOI :
10.1109/MINES.2009.180
