DocumentCode :
3092243
Title :
Policy Description Language for Dynamic Access Control Models
Author :
Hashimoto, Masaki ; Kim, Mira ; Tsuji, Hidenori ; Tanaka, Hidehiko
Author_Institution :
Grad. Sch. of Inf. Security, Inst. of Inf. Security, Yokohama, Japan
fYear :
2009
fDate :
12-14 Dec. 2009
Firstpage :
37
Lastpage :
42
Abstract :
Recently, dynamic access control models are proposed to restrict access domain appropriately in multi-layered defense. However, policy description languages proposed so far can not express the models effectively in proper granularity. In this paper, we propose a policy description language which can designate precise condition for access control by using dynamic status of application process. Using the proposed language, we compose the policy of SELinux which is major implementation achieving multi-layered defense and confirm the advantages of the proposed language by evaluating the response and the expressiveness.
Keywords :
Linux; authorisation; SELinux; dynamic access control models; multilayered defense; policy description language; Access control; Application software; Authorization; Computer security; Concrete; Conference management; Humans; Information security; Kernel; Linux; Access control; Computer security;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Dependable, Autonomic and Secure Computing, 2009. DASC '09. Eighth IEEE International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-0-7695-3929-4
Electronic_ISBN :
978-1-4244-5421-1
Type :
conf
DOI :
10.1109/DASC.2009.129
Filename :
5380273
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3092243
بازگشت