A Novel Multi-level Security Policy Model for Protecting Documents
Insider threat is widely recognized as an utmost important issue for organization security management. Documents are often considered as the most important information assets so that they will be the chief target of insider misuse. The former coarse grained security policies, such as the principle of least privilege and separate of duty, are not enough to address insider threat for security of documents. In this paper, we present a novel multi-level security policy model and related algorithms on information flow of documents. With different system context, it will generate dynamic restrictions on information flow, and prohibit probable hidden channels of information flow.
insider threat security policy information flow
Hui Wang Zongpu Jia Bibo Lu Zihao Shen
Dept of Computer Science and Technology Henan Polytechnic University Jiaozuo, China
国际会议
武汉
英文
398-402
2009-11-18(万方平台首次上网日期,不代表论文的发表时间)