mandatory access control policies
Mandatory Access Control
... so access to a copy is possible even if the owner of the original does not provide access to the original ...DAC policies can be easily changed by owner, so a malicious program ...
6
Mandatory Access Control
... If one should try to predict the direction of any continued efforts, in the case of the SELinux community and its development efforts, it will most probably concern modularity of the policy and support for distributed ...
104
Flexible and Fine-Grained Mandatory Access Control on Android for Diverse Security and Privacy Policies
... [email protected] Technische Universität Darmstadt / CASED, Germany Abstract In this paper we tackle the challenge of providing a generic security architecture for the Android OS that can serve as a flexible ...
16
Establishing mandatory access control on Android OS
... establishing mandatory access control on Android stretches across the following peer-reviewed publications [P4, P5, P3, P2, P1], which each contributed to the development of our MAC for Android as ...
208
A Survey of Access Control Policies
... adding access control lists, audit mechanisms, capabilities, mandatory ac- cess control, and information ...directory. Access checks are performed whenever a process tries to ac- cess ...
12
Leveraging IPsec for Mandatory Per-Packet Access Control
... Abstract Mandatory access control (MAC) enforcement is becom- ing available for commercial ...to control interaction between applications on dif- ferent machines based on MAC ...to ...
10
SELinux and grsecurity: A Side-by-Side Comparison of Mandatory Access Control and Access Control List Implementations
... There is no such tool for SELinux. SELinux ships with a very simple perl script audit2allow that will convert denials in system logs to selinux rules. This tool requires that a basic policy exists. It can only be used to ...
32
Access Control Policies for Semantic Networks
... Traditionally, access control approaches (such as mandatory, discretionary, and role-based access control) have dealt only with authorization decisions on a subject’s access ...
8
Access Control: Policies, Models, and Mechanisms
... the control is based on the notion of message filter first introduced by Jajodia and Kogan [46] for the enforcement of mandatory policies in object-oriented ...
56
Storage and Access Control Policies for XML Documents
... Mandatory Access Control (MAC): A model expressed with the use of security labels associated with both subjects and objects. Native XML Database: A database that defines a model for an XML document ...
6
Laboratory Report. An Appendix to SELinux & grsecurity: A Side-by-Side Comparison of Mandatory Access Control & Access Control List Implementations
... default policies included in grsecurity allowed me to at least invoke enforcing mode either at the workstation or remotely, and still execute programs owned by the ...default policies, the workstation would ...
6
Modelling and Analysing Access Control Policies in XACML 3.0
... read access to an object o only if the access class of the object dominates the access of the subject, ...integrity-based mandatory policies prevent subjects to indirectly modify infor- ...
240
Analyzing and Managing Role-Based Access Control Policies
... Role-based access control policy, authorization constraints, linear temporal logic, Object Constraint ...is mandatory to establish adequate mechanisms that enforce the access control ...
36
A Web Service Architecture for Enforcing Access Control Policies
... Fig. 1. Values for attribute Usage sion. 5 Element wsp:Policy is the container for a policy expression. Policy assertions are typed and can be simple or complex . A simple assertion can be compared to other assertions of ...
15
Mandatory Access Control in Linux
... – Limits access of root processes – Controls network-facing daemons – Protects system processes. – Protects kernel[r] ...
20
Mandatory Access Control Systems
... and access brackets (a1, a2) – Rights to execute code in a new procedure segment • (1) r < a1: access permitted with ring-crossing fault • (2) a1 <= r <= a2 = c1: access permitted and no ...
26
Mandatory Access Control for Linux Clustered Servers
... the access control functions in the cluster, there must be a way to pass the security parameters between the nodes in a transparent ...the mandatory access control will by exercised in ...
16
Policies and Procedures (Mandatory)
... Department based on client’s net worth information, client’s financial capacity, prevailing market conditions and margin deposited by client in the form of funds / securities w[r] ...
6
Management of Exceptions on Access Control Policies
... 5 Conclusions In this paper we have studied current strategies in order to manage and deploy pol- icy exceptions when configuring network security components, such as firewalls and filtering routers. As we have ...
26
Formal Verification of Access Control Policies
... different access control techniques and models that have been proposed in the ...organizational access control. RBAC model are suitable for handling access control requirements ...
6