Multi-layer Secure Model of Task-based Information Systems

Task-based information systems are special systems for task-based application with high secure requirements and explicitly secure goals. It has explicit application border, fixed process and roles and a lot of pre-experience knowledge. In order to develop the secure task-based information systems, secure models of the systems should be built firstly. A multi-layer secure policy model of the task-based information systems is proposed in the paper. According with the least privilege principle, we consider the properties of subject and object, the requirement, secure policies and action environment together, introduce the confidentiality check engine and integrity check engine, and transit the authorization trusted of the subject to action trusted in the secure model. Its implementation provides a good reference for the design of the secure task-based information system as well.