Access Control Semantic Encapsulation Model and Appliance
Information security classified protection work is now being carried out in China.Most of the third class application systems do not have high-strength access control,because the mechanism is based on application ayer and lacks for security support from OS.This paper firstly discusses the specific forms of access control semantic on application layer and OS layer.Next ft introduces the idea for parsing the context related to access control and then proposes a security model called Access Control Semantic Encapsulation Model (ACSEM).This model could establish mapping relationships for semantic on different layers and transfer the encapsulated semantic to OS kernel,where access control for the application is implemented.Finally a Web Application Security Enhanced System (WASES) is realized based on ACSEM,which shows that the model can provide safe and reliable support for the application systems.
information security classified protection access control semantic application security security model
Lei Gong Siyuan Xin Yong Zhao
Institute of Electronic Technology Information Engineering University Zhengzhou,China Key Lab of Inf Institute of Computer Science Beijing University of Technology Beijing,China Key Lab of Information
国际会议
太原
英文
116-119
2011-02-26(万方平台首次上网日期,不代表论文的发表时间)