An Authorization Model for Multi-classification Interconnected System
Focusing on the authorization security when subject accesses object in Multi-classification Interconnected System (MCIS), an authorization model which can support multi-ply security policies is proposed. In this model we introduce three authorization constraint conditions: system security classification, information security classification (subject clearance level, object sensitivity level), and different authorization types. We give the mapping functions realizing the mapping relation between the information security label and security classification, and also give the conflict and resolution rules in order to keep consistency of the authorization model. Finally the security of the authorization model is analyzed.
multi-classification interconnected system(MCIS) authorization model conflict resolution rule
Dandan Zhang Hongqi Zhang Xuehui Du
Zhengzhou Information Science and Technology Institute Zhengzhou, China
国际会议
太原
英文
685-688
2010-10-22(万方平台首次上网日期,不代表论文的发表时间)