Title :
Deducibility security with dynamic level assignments
Author :
Sutherland, Ian ; Perlo, Stanley ; Varadarajan, Rammohan
Author_Institution :
Odyssey Res. Associates, Inc., Ithaca, NY, USA
Abstract :
The authors give a generalization of the definition of security for state machines given by D. Sutherland (Proc. 9th Nat. Comput. Security Conf., Sept. 1986). The generalization allows the security levels of inputs and outputs to be assigned dynamically. Its aim is merely to say what it means to infer high-level information from low-level information when the definitions of what is high and low can change. Although the generalization supports the modeling of thins like login and reclassification, it does not give any guidance about how to do login or reclassification correctly. It merely allows such procedures to be represented; this cannot be done in a straightforward way with previous models
Keywords :
automata theory; information theory; security of data; deducibility security; dynamic security level assignment; high-level information; login; low-level information; nondeterministic unbounded queue; reclassification; security; state machines; Automatic control; Control systems; Data security; Databases; Fires; Information security; Law; Legal factors; Protection;
Conference_Titel :
Computer Security Foundations Workshop II, 1989., Proceedings of the
Conference_Location :
Franconia, NH
DOI :
10.1109/CSFW.1989.40581
