Please login using the form on menu list.|
It is required to login for Full-Text PDF.
Application-Oriented Confidentiality and Integrity Dynamic Union Security Model Based on MLS Policy
IEICE TRANSACTIONS on Information and Systems Vol.E95-D No.6 pp.1694-1697
Publication Date: 2012/06/01
Online ISSN: 1745-1361
Print ISSN: 0916-8532
Type of Manuscript: LETTER
Category: Dependable Computing
Multi-Level Security policy,
confidentiality and integrity,
Full Text: PDF(100.3KB)
We propose a new security model based on MLS Policy to achieve a better security performance on confidentiality, integrity and availability. First, it realizes a combination of BLP model and Biba model through a two-dimensional independent adjustment of integrity and confidentiality. And, the subject's access range is adjusted dynamically according to the security label of related objects and the subject's access history. Second, the security level of the trusted subject is extended to writing and reading privilege range respectively, following the principle of least privilege. Third, it adjusts the objects' security levels after adding confidential information to prevent the information disclosure. Fourth, it uses application-oriented logic to protect specific applications to avoid the degradation of security levels. Thus, it can ensure certain applications operate smoothly. Lastly, examples are presented to show the effectiveness and usability of the proposed model.