Safety and liveness for an RBAC/ MAC security model

IFIP Advances in Information and Communication Technology

Volumn 142, Issue , 2004, Pages 316-329

  Phillips, C ^a   Demurjian, S ^a   Ting, T C ^a  

^a UNIVERSITY OF CONNECTICUT   (United States)

Author keywords

Liveness; Safety; Security assurance; Simple integrity; Simple security

Indexed keywords

ACCIDENT PREVENTION; INFORMATION TECHNOLOGY;

LIVENESS; ROLE-BASED; SECURITY ASSURANCE; SECURITY MODEL; SECURITY PROPERTIES; SIMPLE INTEGRITY; SIMPLE SECURITY; WRITING INFORMATION;

SECURITY OF DATA;

EID: 84902439737     PISSN: 18684238     EISSN: None     Source Type: Book Series    
DOI: None     Document Type: Conference Paper

References (16)

1. K. Alford, et al., "Information Assurance Pedagogy," Proc. of IEEE Info. Assurance Wksp., 2001.
2. B. Alpern and F. Schneider, "Defining Liveness," Information Processing Letters, Vol. 21, No. 4, 1985.
3. D. Bell and L. LaPadula, "Secure Computer Systems: Mathematical Foundations Model," M74-244, Mitre Corp., Bedford, MA, 1975.
4. E. Bertino, et al., "TRBAC: A Temporal Role-Based Access Control Model," Proc. of 5th ACM Wksp. on RBAC, 2000.
5. K. J. Biba, "Integrity Considerations for Secure Computer Systems," TR-3153, Mitre Corp, Bedford, MA, 1977.
6. S. Gavrila and J. Barkley, "Formal Specification For Role Based Access Control User/Role and Role/Role Relationship Management," Proc. of the 3rd ACM Wksp. on RBAC, 1998.
7. Joint Operational Support Ctr., http://gccs.disa.mil/gccs/, 1999.
8. L. Lamport, "Proving the Correctness of Multiprocess Programs," IEEE Trans. on Software Engineering, Vol. 3, No. 2, 1977.
9. M. Liebrand, et al., "Role Delegation for a Resource-Based Security Model," Data and Applications Security: Developments and Directions II, E. Gudes and S. Shenoi (eds.), Kluwer, 2003.
10. W. Maconachy, et al., "A Model for Information Assurance: An Integrated Approach," Proc. of IEEE Info. Assurance Wksp., 2001.
11. J. McCumber, "Information Systems Security: A Comprehensive Model," Proc. of the 14th Natl. Computer Security Conf., 1991.
12. S. Osborn, et al., "Configuring Role-Based Access Control to Enforce Mandatory And Discretionary Access Control Policies," ACM Trans. on Information and System Security, Vol. 3, No. 2, 2000.
13. C. Phillips, et al., "Security Engineering for Roles and Resources in a Distributed Environment," Proc. of 3rd ISSEA Conf., 2002.
14. C. Phillips, et al., "Towards Information Assurance in Dynamic Coalitions," Proc. of 2002 IEEE Info. Assurance Wksp., 2002.
15. R. Sandhu, "Lattice-Based Access Control Models," Computer Journal, Vol. 26, No. 11, 1993.
16. http://www.engr.uconn.edu/steve/DSEC/dsec.html