Modeling Mandatory Access Control in Role-Based Security Systems

1996 ◽  
pp. 129-144 ◽  
Author(s):  
Matunda Nyanchama ◽  
Sylvia Osborn
Keyword(s):  
Access Control ◽  
Security Systems ◽  
Mandatory Access Control ◽  
Role Based

scholarly journals Mandatory Access Control Method for Windows Embedded OS Security

Electronics ◽  
2021 ◽  
Vol 10 (20) ◽  
pp. 2478
Author(s):  
Chaeho Cho ◽  
Yeonsang Seong ◽  
Yoojae Won
Keyword(s):  
Operating System ◽  
Access Control ◽  
Security Policy ◽  
Control Method ◽  
Embedded Operating System ◽  
Security Systems ◽  
Discretionary Access Control ◽  
Embedded Os ◽  
Mandatory Access Control ◽  
Access Rights

The Windows Embedded operating system (OS) adopts a discretionary access control (DAC)-based policy, but underlying vulnerabilities exist because of external hacker attacks and other factors. In this study, we propose a system that improves the security of the Windows Embedded OS by applying a mandatory access control (MAC) policy in which the access rights of objects, such as files and folders, and subjects’ privileges, such as processes, are compared. We conducted access control tests to verify whether the proposed system could avoid the vulnerabilities of DAC-based systems. Our results indicate that the existing DAC-based security systems could be neutralized if a principal's security policy is removed. However, in the proposed MAC-based Windows Embedded OS, even if the clearance and category values of a subject’s files are given the highest rating, all accesses are automatically denied. Therefore, the execution of all files that were not previously registered on the whitelist was denied, proving that security was improved relative to DAC-based systems.

A Service-Based Approach for RBAC and MAC Security

2008 ◽  
pp. 1741-1758
Author(s):  
Charles E. Phillips Jr. ◽  
Steven A. Demurjian ◽  
Thuong Doan ◽  
Keith Bessette
Keyword(s):  
Access Control ◽  
Role Based Access Control ◽  
Distributed Application ◽  
Discretionary Access Control ◽  
Mandatory Access Control ◽  
Wide Range ◽  
Role Based

Middleware security encompasses a wide range of potential considerations, ranging from the ability to utilize the security capabilities of middleware solutions (for example, CORBA, .NET, J2EE, DCE, and so forth) directly out-of-the-box in support of a distributed application to leveraging the middleware itself (paradigm) to realize complex and intricate security solutions (for example, discretionary access control, role-based access control, mandatory access control, and so forth). The objective in this chapter is to address the latter consideration: examining the attainment of advanced security capabilities using the middleware paradigm, namely, role-based access control (RBAC) and mandatory access control (MAC). The resulting security provides a robust collection of services that is versatile and flexible and easily integrates into a distributed application comprised of interacting legacy, COTS, GOTS, databases, servers, clients, and so forth.

scholarly journals A Semi-Formal Multi-Policy Secure Model for Semantic Spatial Trajectories

2016 ◽  
Author(s):  
Xingang Wang
Keyword(s):  
Access Control ◽  
Role Based Access Control ◽  
Discretionary Access Control ◽  
Mandatory Access Control ◽  
Role Based ◽  
Spatial Trajectories

With the proliferation of locating devices, more and more raw spatial trajectories are formed, and many works enrich these raw trajectories with semantics, and mine patterns from both raw and semantic trajectories, but access control of spatial trajectories is not considered yet. We present a multi-policy secure model for semantic spatial trajectories. In our model, Mandatory Access Control, Role Based Access Control and Discretionary Access control are all enforced, separately and combined, and we represent the model semi-formally in Ontology Web Language.

A Service-Based Approach for RBAC and MAC Security

2005 ◽  
pp. 317-339 ◽  
Author(s):  
Charles E. Phillips Jr. ◽  
Steven A. Demurjian ◽  
Thuong Doan ◽  
Keith Bessette
Keyword(s):  
Access Control ◽  
Role Based Access Control ◽  
Distributed Application ◽  
Discretionary Access Control ◽  
Mandatory Access Control ◽  
Wide Range ◽  
Role Based

Middleware security encompasses a wide range of potential considerations, ranging from the ability to utilize the security capabilities of middleware solutions (for example, CORBA, .NET, J2EE, DCE, and so forth) directly out-of-the-box in support of a distributed application to leveraging the middleware itself (paradigm) to realize complex and intricate security solutions (for example, discretionary access control, role-based access control, mandatory access control, and so forth). The objective in this chapter is to address the latter consideration: examining the attainment of advanced security capabilities using the middleware paradigm, namely, role-based access control (RBAC) and mandatory access control (MAC). The resulting security provides a robust collection of services that is versatile and flexible and easily integrates into a distributed application comprised of interacting legacy, COTS, GOTS, databases, servers, clients, and so forth.

scholarly journals TRUST- BASED MODELING MAC-TYPE ACCESS CONTROL THROUGH ACCESS AND ACTIONS CONTROL POLICIES

2021 ◽  
Vol XXVIII (2) ◽  
pp. 67-78
Author(s):  
Marcel Danilescu ◽  
◽  
Victor Besliu ◽  
Keyword(s):  
Access Control ◽  
Control Policy ◽  
Business Environment ◽  
Role Based Access Control ◽  
Access Control Policy ◽  
Discretionary Access Control ◽  
Mandatory Access Control ◽  
Attribute Based Access Control ◽  
Role Based ◽  
Control Modeling

In recent decades, the number of researches on access control and user actions in computer systems has increased. Over time, there have been two models of implementing Mandatory Access Control (MAC) policies for government institutions and Discretionary Access Control (DAC) for the business environment, policies that various access control modeling solutions seek to implement. Among the access control modeling solutions developed are Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC), presented in the U.S.A. by the National Institute of Standard and Technology (NIST). In Romania, in 2010, the access control solution based on trust was presented. This paper presents Mandatory Access Control policy modeling using the trust-based access and actions control modeling solution.

scholarly journals A Semi-Formal Multi-Policy Secure Model for Semantic Spatial Trajectories

2016 ◽  
Author(s):  
Xingang Wang
Keyword(s):  
Access Control ◽  
Role Based Access Control ◽  
Discretionary Access Control ◽  
Mandatory Access Control ◽  
Role Based ◽  
Spatial Trajectories

With the proliferation of locating devices, more and more raw spatial trajectories are formed, and many works enrich these raw trajectories with semantics, and mine patterns from both raw and semantic trajectories, but access control of spatial trajectories is not considered yet. We present a multi-policy secure model for semantic spatial trajectories. In our model, Mandatory Access Control, Role Based Access Control and Discretionary Access control are all enforced, separately and combined, and we represent the model semi-formally in Ontology Web Language.

Static Analysis Based Correctness Verification for Mandatory Access Control Framework

2009 ◽  
Vol 32 (4) ◽  
pp. 730-739 ◽  
Author(s):  
Xin-Song WU ◽  
Zhou-Yi ZHOU ◽  
Ye-Ping HE ◽  
Hong-Liang LIANG ◽  
Chun-Yang YUAN
Keyword(s):  
Access Control ◽  
Static Analysis ◽  
Mandatory Access Control ◽  
Control Framework
Sign in / Sign up

Export Citation Format

Share Document