Naval Postgraduate School
Dudley Knox Library
NPS Dudley Knox Library
View Item 
  •   Calhoun Home
  • Theses and Dissertations
  • 1. Thesis and Dissertation Collection, all items
  • View Item
  •   Calhoun Home
  • Theses and Dissertations
  • 1. Thesis and Dissertation Collection, all items
  • View Item
  • How to search in Calhoun
  • My Accounts
  • Ask a Librarian
JavaScript is disabled for your browser. Some features of this site may not work without it.

Browse

All of CalhounCollectionsThis Collection

My Account

LoginRegister

Statistics

Most Popular ItemsStatistics by CountryMost Popular Authors

Safety of mixed model access control in a multilevel system

Thumbnail
Download
Icon14Jun_Arvay_Randall_PhD.pdf (6.950Mb)
Download Record
Download to EndNote/RefMan (RIS)
Download to BibTex
Author
Arvay, Randall J.
Date
2014-06
Advisor
Michael, James Bret
Metadata
Show full item record
Abstract
Information sharing can result in emergent behaviors that affect the safety properties associated with overt information flows. Secure cross-domain integration, involving the safety properties of both individual domains and the information dissemination across those domains, can result in leakage of information during the brokering of that information in an enterprise-level, multilevel secure (MLS) system using mixed model access control. Existing access control models do not address this problem. To address this gap, we developed a technique for building compositional models that combine both role-based access control and traditional MLS-based Bell-LaPadula models to provide for a high-assurance MLS system access controller. However, such compositional models introduce information rights proliferation during the specification of high-assurance security requirements and the security policy to provide for safety within the system. We addressed that problem with a technique that leverages RuleML to specify declassification policies for securing information exchange between different security levels of disparate access control models. The technique supports the tranquility principle allowing for desired information flows while not violating the overall security policy of the system. We demonstrated the technical feasibility of using both of these techniques, using as our example application cross-domain information sharing in conducting Maritime Domain Awareness operations.
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
URI
http://hdl.handle.net/10945/42574
Collections
  • 1. Thesis and Dissertation Collection, all items

Related items

Showing items related by title, author, creator and subject.

  • Thumbnail

    Role-based access control for coalition partners in maritime domain awareness 

    Tardy, Matthew L. (Monterey, California. Naval Postgraduate School, 2005-06);
    The need for Shared Situational Awareness (SSA) in accomplishing joint missions by coalition militaries, law enforcement, the intelligence community, and the private sector creates a unique challenge to providing access ...
  • Thumbnail

    Software Re-Engineering of the Human Factors Analysis and Classification System b1s (Maintenance extension) using object oriented methods in a Microsoft Environment 

    Flanders, Thomas P.; Tufts, Scott K. (2001-09);
    The purpose of this research is to technically evaluate, refine, and expand two existing aircraft safety management information systems (one military and one civilian). The systems are used in the data collection, organization, ...
  • Thumbnail

    A Linux Implementation of Temporal Access Controls 

    Chiang, Ken; Nguyen, Thuy D.; Irvine, Cynthia E. (A Linux Implementation of Temporal Access Controls, 2007-06-01);
    Control of access to information based upon temporal attributes can add another dimension to access control. To demonstrate the feasibility of operating system level support for temporal access controls, the Time Interval ...
NPS Dudley Knox LibraryDUDLEY KNOX LIBRARY
Feedback

411 Dyer Rd. Bldg. 339
Monterey, CA 93943
circdesk@nps.edu
(831) 656-2947
DSN 756-2947

    Federal Depository Library      


Start Your Research

Research Guides
Academic Writing
Ask a Librarian
Copyright at NPS
Graduate Writing Center
How to Cite
Library Liaisons
Research Tools
Thesis Processing Office

Find & Download

Databases List
Articles, Books & More
NPS Theses
NPS Faculty Publications: Calhoun
Journal Titles
Course Reserves

Use the Library

My Accounts
Request Article or Book
Borrow, Renew, Return
Tech Help
Remote Access
Workshops & Tours

For Faculty & Researchers
For International Students
For Alumni

Print, Copy, Scan, Fax
Rooms & Study Spaces
Floor Map
Computers & Software
Adapters, Lockers & More

Collections

NPS Archive: Calhoun
Restricted Resources
Special Collections & Archives
Federal Depository
Homeland Security Digital Library

About

Hours
Library Staff
About Us
Special Exhibits
Policies
Our Affiliates
Visit Us

NPS-Licensed Resources—Terms & Conditions
Copyright Notice

Naval Postgraduate School

Naval Postgraduate School
1 University Circle, Monterey, CA 93943
Driving Directions | Campus Map

This is an official U.S. Navy Website |  Please read our Privacy Policy Notice  |  FOIA |  Section 508 |  No FEAR Act |  Whistleblower Protection |  Copyright and Accessibility |  Contact Webmaster

Export search results

The export option will allow you to export the current search results of the entered query to a file. Different formats are available for download. To export the items, click on the button corresponding with the preferred download format.

A logged-in user can export up to 15000 items. If you're not logged in, you can export no more than 500 items.

To select a subset of the search results, click "Selective Export" button and make a selection of the items you want to export. The amount of items that can be exported at once is similarly restricted as the full export.

After making a selection, click one of the export format buttons. The amount of items that will be exported is indicated in the bubble next to export format.