A Fine-Grained Access Control Model with Secure Label on Data Resource

被引：0

作者：

Gao, Lijie ^{[1
]}

Liu, Lianzhong ^{[1
]}

Jin, Ze ^{[1
]}

Han, Chunyan ^{[1
]}

机构：

[1] Beihang Univ, Sch Comp Sci & Engn, Beijing Key Lab Network Technol, Beijing 100191, Peoples R China

来源：

2013 3RD INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT) | 2013年

关键词：

access control; Fine-Grained; data resource; secure label;

D O I：

暂无

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

With the demand driven of Web-Based security and the privacy protection for sensitive information, the research on Fine-Grained mandatory access control for data resources in database is getting more attention. A Fine-Grained access control model with security label features (SL-FGAC) is proposed. The data resources are divided by granularity at least on column-level and record-level, where the record-level is discussed in particular. The allocation rules for security labels and constraints on permission and role assignments are argued. Finally the model is applied to an actual access control system, where the processes of classification approval, authorization and access control are discussed in detail, especially adding the limit note expressed as filter conditions for the access control on record-level resources.

引用

页码：14 / 18

页数：5

共 14 条

[1] [Anonymous], IEEE COMPUT
[2] [Anonymous], 2009, JER FOR INF CLASS
[3] Bell D.E., 1976, ESDTR75306 MITRE COR
[4] Cao Wenyuan, 2007, J APPL RES COMPUTERS, V24
[5] Chen Wang, 2008, J CHINESE COMPUTER S
[6] Liu Yimin, 2008, CHINA DIGITAL MED, V3
[7] Oracle Corporation, 2002, OR CORP VIRT PRIV DA
[8] Osborn S., 2000, ACM Transactions on Information and Systems Security, V3, P85, DOI 10.1145/354876.354878
[9] Rizvi S, 2009, P 2004 ACM SIGMOD IN
[10] Roichman Alex, 2007, P 12 ACM S ACC CONTR, DOI [10.1145/1266840.1266846, DOI 10.1145/1266840.1266846]]

← 1 2 →