• DocumentCode
    3092243
  • Title

    Policy Description Language for Dynamic Access Control Models

  • Author

    Hashimoto, Masaki ; Kim, Mira ; Tsuji, Hidenori ; Tanaka, Hidehiko

  • Author_Institution
    Grad. Sch. of Inf. Security, Inst. of Inf. Security, Yokohama, Japan
  • fYear
    2009
  • fDate
    12-14 Dec. 2009
  • Firstpage
    37
  • Lastpage
    42
  • Abstract
    Recently, dynamic access control models are proposed to restrict access domain appropriately in multi-layered defense. However, policy description languages proposed so far can not express the models effectively in proper granularity. In this paper, we propose a policy description language which can designate precise condition for access control by using dynamic status of application process. Using the proposed language, we compose the policy of SELinux which is major implementation achieving multi-layered defense and confirm the advantages of the proposed language by evaluating the response and the expressiveness.
  • Keywords
    Linux; authorisation; SELinux; dynamic access control models; multilayered defense; policy description language; Access control; Application software; Authorization; Computer security; Concrete; Conference management; Humans; Information security; Kernel; Linux; Access control; Computer security;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Dependable, Autonomic and Secure Computing, 2009. DASC '09. Eighth IEEE International Conference on
  • Conference_Location
    Chengdu
  • Print_ISBN
    978-0-7695-3929-4
  • Electronic_ISBN
    978-1-4244-5421-1
  • Type

    conf

  • DOI
    10.1109/DASC.2009.129
  • Filename
    5380273
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3092243