Title :
A trust model of TCB subsets
Author :
Li, Yong ; Zhang, Xing
Author_Institution :
Inst. of Electron. Technol., PLA Inf. Eng. Univ., Zhengzhou, China
Abstract :
The traditional TCB is considered of working on system layer, while TCB in modern information system has extended to application layer. As keeping TCB trusted is one of the preconditions of ensuring information system security, it is necessary to study the trust attributes of extended TCB. In this paper, TCB is compartmentalized into TCB subsets according to the hierarchical structure of policy. Time-isolation relation and space-isolation relation are used to discrib the relations among TCB subsets. Based on the trusted-supporting relations, a theorem is brought forward and proved which gives the conditions to ensure the extended TCB trusted. At the end of this paper, an example is given to illuminate that access control mechanisms based on this model can provide more nice-granular control to enhance the security of system.
Keywords :
authorisation; information systems; set theory; TCB subset; access control; application layer; hierarchical structure; information system security; nice-granular control; space-isolation relation; time-isolation relation; trusted-supporting relation; Access control; Computational modeling; Computers; Hardware; Kernel; Pipelines; Access control; TCB subset; Trust relation;
Conference_Titel :
Machine Learning and Cybernetics (ICMLC), 2010 International Conference on
Conference_Location :
Qingdao
Print_ISBN :
978-1-4244-6526-2
DOI :
10.1109/ICMLC.2010.5580768
