Extended role based access control with procedural constraints for trusted operating systems

Wook Shin; Jong Youl Park; Dong Ik Lee

doi:10.1093/ietisy/e88-d.3.619

Extended role based access control with procedural constraints for trusted operating systems

Wook Shin, Jong Youl Park, Dong Ik Lee

Dept. of Applied Artificial Intelligence

Gwangju Institute of Science and Technology

Research output: Contribution to journal › Article › peer-review

6 Scopus citations

Abstract

The current scheme of access control judges the legality of each access based on immediate information without considering associate information hidden in a series of accesses. Due to the deficiency, access control systems do not efficiently limit attacks consist of ordinary operations. For trusted operating system developments, we extended RBAC and added negative procedural constraints to refuse those attacks. With the procedural constraints, the access control of trusted operating systems can discriminate attack trials from normal behaviors. This paper shows the specification of the extended concept and model, and presents simple analysis results.

Original language	English
Pages (from-to)	619-627
Number of pages	9
Journal	IEICE Transactions on Information and Systems
Volume	E88-D
Issue number	3
DOIs	https://doi.org/10.1093/ietisy/e88-d.3.619
State	Published - 2005

Keywords

Access control
Procedural constraints
RBAC
Reference monitor
Secure operating system
Security kernel
Trusted operating system

Access to Document

10.1093/ietisy/e88-d.3.619

Cite this

@article{9a13e2c13925472d98bcb74a12623032,

title = "Extended role based access control with procedural constraints for trusted operating systems",

abstract = "The current scheme of access control judges the legality of each access based on immediate information without considering associate information hidden in a series of accesses. Due to the deficiency, access control systems do not efficiently limit attacks consist of ordinary operations. For trusted operating system developments, we extended RBAC and added negative procedural constraints to refuse those attacks. With the procedural constraints, the access control of trusted operating systems can discriminate attack trials from normal behaviors. This paper shows the specification of the extended concept and model, and presents simple analysis results.",

keywords = "Access control, Procedural constraints, RBAC, Reference monitor, Secure operating system, Security kernel, Trusted operating system",

author = "Wook Shin and Park, \{Jong Youl\} and Lee, \{Dong Ik\}",

year = "2005",

doi = "10.1093/ietisy/e88-d.3.619",

language = "English",

volume = "E88-D",

pages = "619--627",

journal = "IEICE Transactions on Information and Systems",

issn = "0916-8532",

number = "3",

}

TY - JOUR

T1 - Extended role based access control with procedural constraints for trusted operating systems

AU - Shin, Wook

AU - Park, Jong Youl

AU - Lee, Dong Ik

PY - 2005

Y1 - 2005

N2 - The current scheme of access control judges the legality of each access based on immediate information without considering associate information hidden in a series of accesses. Due to the deficiency, access control systems do not efficiently limit attacks consist of ordinary operations. For trusted operating system developments, we extended RBAC and added negative procedural constraints to refuse those attacks. With the procedural constraints, the access control of trusted operating systems can discriminate attack trials from normal behaviors. This paper shows the specification of the extended concept and model, and presents simple analysis results.

AB - The current scheme of access control judges the legality of each access based on immediate information without considering associate information hidden in a series of accesses. Due to the deficiency, access control systems do not efficiently limit attacks consist of ordinary operations. For trusted operating system developments, we extended RBAC and added negative procedural constraints to refuse those attacks. With the procedural constraints, the access control of trusted operating systems can discriminate attack trials from normal behaviors. This paper shows the specification of the extended concept and model, and presents simple analysis results.

KW - Access control

KW - Procedural constraints

KW - RBAC

KW - Reference monitor

KW - Secure operating system

KW - Security kernel

KW - Trusted operating system

UR - http://www.scopus.com/inward/record.url?scp=24144464548&partnerID=8YFLogxK

U2 - 10.1093/ietisy/e88-d.3.619

DO - 10.1093/ietisy/e88-d.3.619

M3 - Article

AN - SCOPUS:24144464548

SN - 0916-8532

VL - E88-D

SP - 619

EP - 627

JO - IEICE Transactions on Information and Systems

JF - IEICE Transactions on Information and Systems

IS - 3

ER -

Extended role based access control with procedural constraints for trusted operating systems

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this