E. Bertino, S. De Capitani di Vimercati, E. Ferrari, and P. Samarati. Exception-based information flow control in object-oriented systems. ACM Transactions on Information and System Security, April 1998.  Home/Search   Document Not in Database   Summary   Related Articles

....For this reason restrictions should be enforced on the operations that processes themselves can execute. In particular, protection against Trojan Horses leaking information to unauthorized users requires controlling the flows of information within process execution and possibly restricting them [5, 15, 25, 35, 36, 30]. Mandatory policies provide a way to enforce information flow control through the use of labels. 3.3 Mandatory policies Mandatory security policies enforce access control on the basis of classifications of subjects and objects in the system. Objects are the passive entities storing ....

....be allowed are determined only on the basis of the classifications of subjects and objects in the system. No possibility is given to the users for granting and revoking authorizations to other users. Some approaches have been proposed that complement flow control with discretionary access control [5, 25, 35]. 3.4 Role based policies A class of access control policies that has been receiving considerable attention recently is represented by role based policies [20, 21, 44, 49] Role based policies govern the access of users to the information on the basis of their organizational role. A role can be ....

E. Bertino, S. De Capitani di Vimercati, E. Ferrari, and P. Samarati. Exception-based information flow control in object-oriented systems. ACM Transactions on Information and System Security, April 1998.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC