VIRTUAL ACCESS CONTROL SECURITY SYSTEM FOR SUPPORTING VARIOUS ACCESS CONTROL POLICIES IN OPERATING SYSTEM OR APPLICATION

摘要

The present invention relates to a virtual access control security system and a security method using a virtual access control system to provide various access control policies in the operating system or applications.;To this end, the virtual access control security system of the present invention requests whether the subject permits an action to be performed on an object to which the subject wants to access, and requests and enforces a policy to execute the action on the object according to the permission result of the request. module; Virtual access control that can be applied dynamically to the operating system by implementing policy decision module that decides whether to grant access to the request using the set access permission information and various access control policies such as MAC, DAC, RBAC etc. System module; Record the information on the subject's request for the action that is not allowed to access the object, and determine the abnormal behavior by analyzing the abnormal behavior for the subject that is allowed to access the object and recall the subject. Includes a policy control module that controls access to an object.;According to the present invention, as a new access control security structure using a virtual access control system is provided, various access control policies can be easily applied to an operating system, and the structure is simple, so that the design and implementation is easy, and a new access control model is provided. Can be easily applied.; Security, access control, policy request and execution, policy decision, policy control, subject, object, action, virtual access control system, virtual access control security system, security method