Security assurance for an RBAC/MAC security model

机译：RBAC / MAC安全模型的安全保证

获取原文

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Corporations and government agencies rely on inter-operating software artifacts (e.g., legacy, COTS, GOTS, databases, servers, etc.) and client applications, brought together by middleware (e.g., CORBA, JINI, .NET, etc.), supporting unrestricted access to application programmer interfaces, APIs. As part of our ongoing research, we have designed and prototyped a unified role-based/mandatory access control (RBAC/MAC) security model with delegation and enforcement to control access by users (via clients) to the methods of artifact APIs, namely: who (user/client) can invoke which methods of artifact APIs at what times. Underlying our RBAC/MAC framework are security assurance rules, SARs, which provide a confidence level on the attainment of an application's security policy. We focus on the formal underpinnings of our security assurance research, its realization during security policy definition with management tools, and at runtime by the enforcement framework.

机译：公司和政府机构依靠互操作的软件工件（例如，旧版，COTS，GOTS，数据库，服务器等）和客户端应用程序（由中间件（例如，CORBA，JINI，.NET等）整合在一起）来支持不受限制地访问应用程序接口，API。作为我们正在进行的研究的一部分，我们已经设计并原型化了基于角色/强制访问控制（RBAC / MAC）的统一安全模型，该模型具有委派和强制执行，以控制用户（通过客户端）对工件API方法的访问，即：谁（用户/客户端）可以在什么时间调用工件API的哪些方法。我们的RBAC / MAC框架的基础是安全保证规则SAR，它为实现应用程序的安全策略提供了置信度。我们专注于我们的安全保证研究的正式基础，在使用管理工具定义安全策略期间以及在执行框架中在运行时实现的内容。

著录项

来源
《Information Assurance Workshop, 2003. IEEE Systems, Man and Cybernetics Society》|2003年|p.260-267|共8页
会议地点
作者
Phillips C.E.; Demurjian S.A.; Ting T.C.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类无线电电子学、电信技术;
关键词
middleware; authorisation; distributed object management; message authentication; security assurance rule; SAR; government agency; inter-operating software artifact; client applications; middleware; unrestricted access; API; application programmer interf;

机译：中间件;授权;分布式对象管理;消息认证;安全保证规则; SAR;政府机构;互操作软件工件;客户端应用程序;中间件;无限制访问; API;应用程序员接口;

相似文献

外文文献
中文文献
专利

1. Integrating RBAC, MIC, and MLS in Verified Hierarchical Security Model for Operating System [J] . Devyanin P. N., Khoroshilov A. V, Kuliamin V. V., Programming and Computer Software . 2020,第7期

机译：将RBAC，MIC和MLS集成在验证的操作系统中的分层安全模型中
2. Applying RBAC Security Control Model to Manufacturing and Logistics Service Platform [J] . Shin Moon Sun, Ju Yong Wan, Kang Hyun Kyu, Studies in Informatics and Control . 2015,第3期

机译：将RBAC安全控制模型应用于制造和物流服务平台
3. Constructing RBAC Based Security Model in u-Healthcare Service Platform [J] . Moon SunShin, Heung SeokJeon, Yong WanJu, ScientificWorldJournal . 2015,第3期

机译：构建基于U-HealthCare服务平台的RBAC安全模型
4. SECURITY ASSURANCE FOR AN RBAC/MAC SECURITY MODEL [C] . Charles E. Phillips Jr., Steven A. Demurjian, T. C. Ting IEEE Man Systems and Cybernetics Information Assurance Workshop . 2003

机译：RBAC / MAC安全模型的安全保障
5. Security assurance for a resource-based RBAC/DAC/MAC security model. [D] . Phillips, Charles Edward, Jr. 2004

机译：基于资源的RBAC / DAC / MAC安全模型的安全保证。
6. Constructing RBAC Based Security Model in u-Healthcare Service Platform [O] . Moon Sun Shin, Heung Seok Jeon, Yong Wan Ju, 2015

机译：在u医疗服务平台中构建基于RBAC的安全模型
7. On the Modeling of Bell-LaPadula Security Policies using RBAC [O] . Zhao Gansen, Chadwick David W. 2008

机译：使用RBAC的Bell-LaPadula安全策略建模

Security assurance for an RBAC/MAC security model

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅