Application-Oriented Confidentiality and Integrity Dynamic Union Security Model Based on MLS Policy
スポンサーリンク
概要
- 論文の詳細を見る
We propose a new security model based on MLS Policy to achieve a better security performance on confidentiality, integrity and availability. First, it realizes a combination of BLP model and Biba model through a two-dimensional independent adjustment of integrity and confidentiality. And, the subject's access range is adjusted dynamically according to the security label of related objects and the subject's access history. Second, the security level of the trusted subject is extended to writing and reading privilege range respectively, following the principle of least privilege. Third, it adjusts the objects' security levels after adding confidential information to prevent the information disclosure. Fourth, it uses application-oriented logic to protect specific applications to avoid the degradation of security levels. Thus, it can ensure certain applications operate smoothly. Lastly, examples are presented to show the effectiveness and usability of the proposed model.
- The Institute of Electronics, Information and Communication Engineersの論文
著者
-
HU Aiqun
Research Center of Information Security, Southeast University
-
XUE Mingfu
Research Center of Information Security, Southeast University
-
HE Chunlong
National Mobile Communication Research Laboratory, Southeast University
関連論文
- Application-Oriented Confidentiality and Integrity Dynamic Union Security Model Based on MLS Policy
- Application-Oriented Confidentiality and Integrity Dynamic Union Security Model Based on MLS Policy