A User Friendly Guard with Mobile Post-Release Access Control Policy

Authors :: Amgad Fayad
Sushil Jajodia
Douglas Williams
Daniel Calle
Source :: Security and Privacy in the Age of Uncertainty ISBN: 9781475764895, SEC
Publication Year :: 2003
Publisher :: Springer US, 2003.
Abstract: Information security guards perform an important function in multilevel security (MLS) environments. To perform their functions correctly, guards must contain data release and sanitization rules that accurately reflect the reclassification or declassification requirements to move data across information security boundaries. The current guards, however, require considerable technical skill to express release and sanitization rules, which data producers typically do not possess. Another limitation of the current guards is that once the data passes through a guard, all access control requirements to that data is lost. In this paper, we propose a high-level language to express release and sanitization rules, as well as post-release access control rules. We also describe a prototype that demonstrates the applicability of our approach.

Subjects :: Post release
Guard (information security)
User Friendly
business.industry
Computer science
Access control
Information security
Computer security
computer.software_genre
Security guard
Declassification
Multilevel security
business
computer

ISBN :: 978-1-4757-6489-5
ISBNs :: 9781475764895
Database :: OpenAIRE
Journal :: Security and Privacy in the Age of Uncertainty ISBN: 9781475764895, SEC
Accession number :: edsair.doi...........1b113c2f6d0355557b0119c992fb2fb5
Full Text :: https://doi.org/10.1007/978-0-387-35691-4_23