A distributed usage control system based on trusted computing

Jisuanji Xuebao/Chinese Journal of Computers

Volumn 33, Issue 1, 2010, Pages 93-102

  Chu, Xiao Bo ^a,b   Qin, Yu ^a,b  

^a INSTITUTE OF SOFTWARE   (China)

^b National Engineering Research Center of Information Security   (China)

Author keywords

Distributed access control; Linux secure module; Trusted computing; Trusted extended access control markup language; Usage control

Indexed keywords

CONTROL DOMAINS; DISTRIBUTED ACCESS CONTROL; DISTRIBUTED COMPUTING ENVIRONMENT; DISTRIBUTED ENVIRONMENTS; EFFECTIVE SOLUTION; ENFORCEMENT MECHANISMS; LINUX SECURE MODULE; POLICY DECISIONS; SECURITY ISSUES; SYSTEM-BASED; TRUSTED COMPUTING; TRUSTED COMPUTING TECHNOLOGY; USAGE CONTROL;

COMPUTER OPERATING SYSTEMS; LINGUISTICS; MARKUP LANGUAGES; SECURITY SYSTEMS;

ACCESS CONTROL;

EID: 77949552459     PISSN: 02544164     EISSN: None     Source Type: Journal    
DOI: 10.3724/SP.J.1016.2010.00093     Document Type: Article

References (18)

1. Park J, Sandhu R. The UCONABC usage control model. ACM Transactions on Information and System Security, 2004, 7(1): 128-174
2. Hilty M, Pretschner A, Basin D, Schaefer D, Walter T. A policy language for distributed usage control//Proceedings of the European Symposium on Research in Computer Security(ESORICS). Dresden, 2007: 531-546
3. Pretschner A, Hilty M, Basin D. Distributed usage control. Communications of the ACM, 2006, 49(9): 39-44
4. Sailer R, Zhange X L, Jaeger T, Doorn L V. Design and implementation of a TCG-based integrity measurement architecture//Proceedings of the 13th USENIX Security Symposium. San Diego, 2004: 223-238
5. Jaeger T, Sailer R, Shankar U. PRIMA: Policy-reduced integrity measurement architecture//Proceedings of the 11th ACM Symposium on Access Control Models and Technologies(SACMAT). Lake Tahoe, 2006: 19-28
6. Chen L Q, Lohr H, Manulis M, Sadeghi A R. Property-based attestation without a trusted third party//Proceedings of the Information Security Conference(ISC). Taipei, China, 2008: 31-46
7. Brickell E, Camenisch J, Chen L Q. Direct anonymous attestation//Proceedings of the 11th ACM Conference on Computer and Communications Security(CCS 2004). Washington. D.C., 2004: 132-145
8. Chen L, Landfermann R, Lohr H, Rohe M, Sadeghi A, Stuble C. A protocol for property-based attestation//Proceedings of the 2006 ACM Workshop on Scalable Trusted Computing(STC), Alexandria, 2006: 7-16
9. Kyle D, Brustoloni J C. UCLinux: A Linux security module for trusted-computing-based usage controls enforcement//Proceedings of the 2007 ACM Workshop on Scalable Trusted Computing(STC). Alexandria, 2007: 63-70
10. Wright C, Cowan C, Smalley S, Morris J, Hartman G K. Linux security modules: General security support for the Linux kernel//Proceedings of the 11th USENIX Security Symposium. Berkeley, 2002: 17-31
11. Alam M, Seifert M P, Li Q, Zhang X W. Usage control platformization via trustworthy SELinux//Proceedings of the 2008 ACM Symposium on Information, Computer and Com-munications Security(ASIACCS). Tokyo, 2008: 245-248
12. Berthold A, Alam M, Breu R, Hafner M, Pretschner A, Seifert J P, Zhang X W. A technical architecture for enforcing usage control requirements in service-oriented architectures//Proceedings of the 2007 ACM Workshop on Secure Web Services. Alexandria, 2007: 18-25
13. Sevin P E, Strasser M, Basin D. Securing the distribution and storage of secrets with trusted platform modules//Proceedings of the Workshop in Information Security Theory and Practices(WISTP). Heraklion, 2007: 53-66
14. Nie Xiao-Wei, Feng Deng-Guo. TXACML-An access control policy architecture based on trusted platform. Journal of Computer Research and Development, 2008, 45(10): 1676-1686(in Chinese)
15. Xu Zhen, Shen Li-Hong, Wang Dan. LOIS Grub: A configurable trusted booting system. Journal of the Graduate School of the Chinese Academy of Sciences, 2008, 25(5): 626-630(in Chinese)
16. Pedersen T P. Non-interactive and information-theoretic secure verifiable secret sharing//Proceedings of the International Cryptology Conference(CRYPTO). Santa Barbara, 1991: 129-140
17. Abe M, Ohkubo M, Suzuki K. 1-out-of-n signatures from a variety of keys//Proceedings of the Annual International Conference on the Theory and Application of Cryptology & Information Security(ASIACRYPT). Queenstown, 2002: 415-432
18. Nie Xiao-Wei. A study of access control based on trusted platform[Ph.D. dissertation]. Graduate University of Chinese Academy of Sciences, Beijing, 2009(in Chinese)