MetaCartSign in to MyCiteSeer

Include Citations | Advanced Search | Help

Include Citations | Advanced Search | Help

  The extended schematic protection model (1992) [9 citations — 1 self]

Download:
Download as a PDF | Download as a PS
by Paul Ammann, Ravi S. S, Gurpreet S. Suri
Journal of Computer Security
http://www.list.gmu.edu/confrnc/acsac/ps_ver/a91espm.ps
Add To MetaCart

Abstract:

Protection models provide a formalism for specifying control over access to information and other resources in a multi-user computer system. One such model, the Extended Schematic Protection Model (ESPM), has expressive power equivalent to the monotonic access matrix model of Harrison, Ruzzo, and Ullman [7]. Yet ESPM retains tractable safety analysis for many cases of practical interest. Thus ESPM is a very general model, and it is of interest whether ESPM can be implemented in a reasonable manner. In this paper, we outline a distributed implementation for ESPM. Our implementation is capability-based, with an architecture where servers act as mediators to all subject and object access. Capabilities are made nontransferable by burying the identity of subjects in them, and unforgeable by using a public key encryption algorithm. Timestamps and public keys are used as mechanisms for revocation. 1

Citations

426 Secure computer system: Unified exposition and MULTICS interpretation – Bell, LaPadula - 1976
297 A comparison of commercial and military computer security policies – Clark, Wilson - 1987
246 Protection in Operating Systems – Harrison, Ruzzo, et al. - 1976
82 Security for Computer Networks – Davies, Price - 1989
69 A secure identity-based capability system – Gong - 1989
54 A linear time algorithm for deciding subject security – Lipton, Snyder - 1977
53 The schematic protection model: Its definition and analysis for acyclic attenuating schemes – Sandhu - 1988
26 Transformation of access rights – Sandhu - 1989
24 Expressive power of the schematic protection model – Sandhu - 1992
16 Safety Analysis for the Extended Schematic Protection Model – Ammann, Sandhu - 1991
13 Extending the Creation Operation in the Schematic Protection Model – Ammann, Sandhu - 1990
10 Unidirectional transport of rights and take-grant control – Lockman, Minsky - 1982
6 Undecidability of Safety for the Schematic Protection Model with Cyclic Creates – Sandhu - 1992
6 A Distributed Implementation of the Transform Model – Sandhu, Suri - 1991
View or Download | Add to My Collection | Correct Errors