An XML-based Description Method of Security Policy
Policy-based security technology is getting more and more attention. But the description method about policy is not very well because most of its description methods are defined for particular application, and can not be used widely. Point to this, a formal definition for general policy is proposed. Furthermore, an XMI_,-based description rule for the general security policy is defined. Some description samples about the method are provided by depicting RBAC and BLPs security rules. By regulating the systems subject, target, action, constraint condition and their logic relationship in policy, the description rule is very accurate and easy to be used. This description method is of benefit for policys logic reasoning and conflict detection.
security policy formal description logical relationship description rule
WANG Jing LIN Zhi SUN Lin
Department of Computer and Information Wuhan Polytechnic University Wuhan, China Wuhan Commanding Communications Academy Wuhan, China
国际会议
厦门
英文
391-396
2010-10-29(万方平台首次上网日期,不代表论文的发表时间)