Design and implementation of DF-Salvia which provides mandatory access control based on data flow

Shozo Ida, Takehiro Kashiyama, Eiji Takimoto, Shoichi Saito, Eric Wallace Cooper, Koichi Mouri

研究成果: Chapter in Book/Report/Conference proceedingConference contribution

1 被引用数 (Scopus)

抄録

Recently, incidents in which data such as private information has leaked have occurred frequently. In many cases, the main causes of data leakage are as follows: taking data out illegally or unfairly, erroneous operation by a user with authority to access the data. We developed the operating system Salvia for the purpose of preventing data leakage resulting from these causes. Salvia provides the capability to attach data protection policies to each file. In addition, Salvia monitors resource access that may incur the possibility of data leakage. When a process requests to access to such resources, Salvia allows the operation only if it does not violate the policies of all files which are read by the process. That is, Salvia controls resource access by process. In this paper, we propose DF-Salvia, based on Salvia. An access control unit of DF-Salvia is data flow, which is finer-grained than the process-based access control of Salvia. This means that DF-Salvia applies a policy not to each process but to each data flow in a process in order to limit the extent of the effect of the policy to corresponding data flow. The results show a solution to the problem of over-restriction of irrelevant data.

本文言語英語
ホスト出版物のタイトルInternational MultiConference of Engineers and Computer Scientists, IMECS 2012
出版社Newswood Limited
ページ182-189
ページ数8
2195
ISBN(印刷版)9789881925114
出版ステータス出版済み - 2012
外部発表はい
イベント2012 International MultiConference of Engineers and Computer Scientists, IMECS 2012 - Kowloon, 香港
継続期間: 3 14 20123 16 2012

その他

その他2012 International MultiConference of Engineers and Computer Scientists, IMECS 2012
国/地域香港
CityKowloon
Period3/14/123/16/12

All Science Journal Classification (ASJC) codes

  • コンピュータ サイエンス(その他)

フィンガープリント

「Design and implementation of DF-Salvia which provides mandatory access control based on data flow」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル