Securing grid data using mandatory access controls

Conferences in Research and Practice in Information Technology Series

Volumn 68, Issue , 2007, Pages 25-32

  Henricksen, Matt ^a   Caelli, William ^a   Croll, Peter ^a  

^a QUEENSLAND UNIVERSITY OF TECHNOLOGY   (Australia)

Author keywords

[No Author keywords available]

Indexed keywords

APPLICATION SECURITY; GRID DATA; MANDATORY ACCESS CONTROL; SENSITIVE APPLICATION; TRUSTED COMPUTING BASE;

COMPUTER OPERATING SYSTEMS; NETWORK SECURITY;

GRID COMPUTING;

EID: 84871258169     PISSN: 14451336     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Article

References (17)

1. Bell, D. & La-Padula, L. (1976), Secure computing systems: unified exposition and MULTICS in- terpretation, Technical Report ESD-TR-75-306, MITRE Corporation, Bedford, Massachusetts.
2. Biba, K. J. (1977), Integrity considerations for secure computer systems, Technical Report MTR-35153, USAF Electronic Systems Divi- sion, Hanscom Air Force Base, Bedford, Mas- sachusetts.
3. Croll, P. & Croll, J. (2004), 'Q.U.i.P.S a quality model for investigating risk exposure in e-health sys- tems', MedInfo Journal 2004 2004, 1023-1027.
4. Ferraiolo, D. & Kuhn, R. (1992), Role-based access controls, in '15th NIST-NCSC National Com- puter Security Conference', pp. 554-563.
5. Filman, R. E. (2004), A bibliography of aspect- oriented software development, version 1.3, Technical Report 04.05, Research Institute for Advanced Computer Science.
6. Gayal, S. (2003), 'SANS malware FAQ: How does the Ptrace exploit work on Linux'. Available at http://www.sans.org/resources/malwarefaq/Ptrace.php.
7. Holford, J., Caelli, W. & Rhodes, A. (2003), The concept of self-defending objects in the devel- opment of security aware applications, in 'Pro- ceedings of the Fourth Australian Information Warfare and IT Security Conference, Adelaide, Australia', pp. 159-169.
8. Intel (2003), 'LaGrande Technology Ar-chitectural Overview'. Available at http://www.intel.com/technology/security/downloads/LTArchOverview.pdf.
9. Loscocco, P., Smalley, S., Muckelbaur, P., Taylor, R., Turner, J. & Farrell, J. (1998), The inevitabil-ity of failure: The flawed assumption of security in modern computing environments, in 'In Pro-ceedings of the 21st National Information Sys-tems Security Conference, National Computer Security Center', pp. 303-314.
10. National Institute of Standards and Technology (2003), 'Role based access control'. Available at http://csrc.nist.gov/rbac/rbac-std-ncits.pdf.
11. National Security Agency (2000), 'Security-Enhanced Linux homepage'. Available at http://www.nsa.gov/selinux/.
12. Reid, J., Cheong, I., Henricksen, M. & Smith, J. (2003), A novel use of RBAC to protect privacy in distributed health care information systems., in R. Safavi-Naini & J. Seberry, eds, 'Information Security and Privacy, 8th Australasian Conference, ACISP 2003, Wollongong, Australia, July 9-11, 2003, Proceedings', Vol. 2727 of Lecture Notes in Computer Science, Springer, pp. 403-415.
13. Rindflesich, T. (1997), 'Privacy, information technology, and health care', Communications of the ACM 40(80), 93-100.
14. Safford, D. & Zohar, M. (2004), 'A trusted linux client'. Available at http://www.research.ibm.com/gsal/tcpa/tlc.pdf.
15. Trusted Computing Group (2006), 'Trusted plat-form work group homepage'. Available at https://www.trustedcomputinggroup.org/groups/tpm/.
16. Vasanta, H., Holford, J., Caelli, W. & Looi, M. (2004), Architecture for securing critical infras-tructures using context-aware self defending ob-jects, in 'Proceedings of the Fifth Asia Pacific In-dustrial Engineering and Management Systems Conference'.
17. Wright, C., Cowan, C., Morris, J., Smalley, S. & Kroah-Hartman, G. (2002), 'Linux security mod-ule framework'. Presented at the 2002 Ottawa Linux Symposium, Ottawa, Canada.