Deployment of mandatory access control policies of operating system under uncertainty

Author

Masar, J. ; Bartos, Jiri ; Klimes, Cyril

Author_Institution

Dept. of Inf. & Comput., Univ. of Ostrava, Ostrava, Czech Republic

fYear

2013

fDate

9-12 Dec. 2013

Firstpage

123

Lastpage

127

Abstract

This article deals with mandatory access controls and security policies within an operating system and proposes general methodology for selection and deployment of policies based on vague information, where these vague descriptions are representing operational, functional and security requirements imposed on the operating system. The proposed methodology is supported by an expert system, purpose of which (together with the methodology) is to minimize, or even completely eliminate, the need for a security consultant as an expert in the problem domain, who is usually needed in the process of designing of a secure operating system. Overall, the methodology tries to move this key responsibility to either the user or the administrator.

Keywords

authorisation; expert systems; operating systems (computers); expert system; mandatory access control policies; secure operating system; security consultant; security policies; Complexity theory; Expert systems; Linux; Pragmatics; Security; SELinux; expert system; mandatory access control; policies; secure operating system; uncertainty;

fLanguage

English

Publisher

ieee

Conference_Titel

Internet Security (WorldCIS), 2013 World Congress on

Conference_Location

London

Type

conf

DOI

10.1109/WorldCIS.2013.6751031

Filename

6751031