Safety of mixed model access control in a multilevel system
Arvay, Randall J.
Michael, James Bret
MetadataShow full item record
Information sharing can result in emergent behaviors that affect the safety properties associated with overt information flows. Secure cross-domain integration, involving the safety properties of both individual domains and the information dissemination across those domains, can result in leakage of information during the brokering of that information in an enterprise-level, multilevel secure (MLS) system using mixed model access control. Existing access control models do not address this problem. To address this gap, we developed a technique for building compositional models that combine both role-based access control and traditional MLS-based Bell-LaPadula models to provide for a high-assurance MLS system access controller. However, such compositional models introduce information rights proliferation during the specification of high-assurance security requirements and the security policy to provide for safety within the system. We addressed that problem with a technique that leverages RuleML to specify declassification policies for securing information exchange between different security levels of disparate access control models. The technique supports the tranquility principle allowing for desired information flows while not violating the overall security policy of the system. We demonstrated the technical feasibility of using both of these techniques, using as our example application cross-domain information sharing in conducting Maritime Domain Awareness operations.
Approved for public release; distribution is unlimited
Showing items related by title, author, creator and subject.
Nguyen, Thuy D.; Irvine, Cynthia E. (International Common Criteria Conference 2010, 2010-09-01);The need for highly robust enterprise-level architectures that implement multi-domain information protection mechanisms is widespread and growing, especially in the context of cloud computing which promotes dynamicity, ...
Shirley, Lawrence J.; Schell, Roger R. (Monterey, California. Naval Postgraduate School, 1981-05); NPS-52-81-004This paper introduces a mathematical framework for evaluating the relationship between policies and mechanisms. An evaluation approach called the assignment technique is defined. This technique consists of establishing an ...
Nagashima, M.; Agrawal, B.N. (2012);For a large Adaptive Optics (AO) system such as a large Segmented Mirror Telescope (SMT), it is often difficult, although not impossible, to directly apply common Multi-Input Multi-Output (MIMO) controller design methods ...