Show simple item record

dc.contributor.advisorMichael, James Bret
dc.contributor.authorArvay, Randall J.
dc.dateJune 2014
dc.date.accessioned2014-08-13T20:17:21Z
dc.date.available2014-08-13T20:17:21Z
dc.date.issued2014-06
dc.identifier.urihttp://hdl.handle.net/10945/42574
dc.descriptionApproved for public release; distribution is unlimiteden_US
dc.description.abstractInformation sharing can result in emergent behaviors that affect the safety properties associated with overt information flows. Secure cross-domain integration, involving the safety properties of both individual domains and the information dissemination across those domains, can result in leakage of information during the brokering of that information in an enterprise-level, multilevel secure (MLS) system using mixed model access control. Existing access control models do not address this problem. To address this gap, we developed a technique for building compositional models that combine both role-based access control and traditional MLS-based Bell-LaPadula models to provide for a high-assurance MLS system access controller. However, such compositional models introduce information rights proliferation during the specification of high-assurance security requirements and the security policy to provide for safety within the system. We addressed that problem with a technique that leverages RuleML to specify declassification policies for securing information exchange between different security levels of disparate access control models. The technique supports the tranquility principle allowing for desired information flows while not violating the overall security policy of the system. We demonstrated the technical feasibility of using both of these techniques, using as our example application cross-domain information sharing in conducting Maritime Domain Awareness operations.en_US
dc.description.urihttp://archive.org/details/safetyofmixedmod1094542574
dc.publisherMonterey, California: Naval Postgraduate Schoolen_US
dc.rightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. As such, it is in the public domain, and under the provisions of Title 17, United States Code, Section 105, may not be copyrighted.en_US
dc.titleSafety of mixed model access control in a multilevel systemen_US
dc.typeThesisen_US
dc.contributor.departmentComputer Science
dc.subject.authorRuleMLen_US
dc.subject.authorCross-Domainen_US
dc.subject.authorMultilevel Securityen_US
dc.subject.authorMaritime Domain Awarenessen_US
dc.subject.authorInformation Leakageen_US
dc.subject.authorAccess Controlen_US
dc.subject.authorInformation Brokeren_US
dc.description.serviceLieutenant Colonel, United States Armyen_US
etd.thesisdegree.nameDoctor of Philosophy In Software Engineeringen_US
etd.thesisdegree.levelDoctoralen_US
etd.thesisdegree.disciplineSoftware Engineeringen_US
etd.thesisdegree.grantorNaval Postgraduate Schoolen_US


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record