Read-abortion (RA) based synchronization protocols to prevent illegal information flow
Journal of Computer and System Sciences(2015)
摘要
In information systems, data in an object may illegally flow into another object through manipulations of the objects. First, we define a legal information flow relation r i ¿ r j among roles r i and r j . It means, if a subject granted the role r i manipulates objects before another subject granted the role r j , no illegal information flow occur. We discuss safe systems where no illegal information flow occur even if operations from different subjects are performed in any order. Then, we discuss a read-abortion role-based synchronization (RA-RBS) protocol and a read-abortion object-based synchronization (RA-OBS) protocol to prevent illegal information flow in unsafe systems. Here, a transaction is aborted if the transaction reads an object and illegal information flow might occur. We evaluate the RA-RBS and RA-OBS protocols in terms of number of transactions aborted. We propose RA-RBS and RA-OBS protocols.More than half of read operations are illegal without information flow control.No illegal information flow occur but some transactions are aborted in the protocols.The abortion ratio in the RA-OBS protocol is smaller than the RA-RBS protocol.
更多查看译文
关键词
Role-based access control (RBAC) model,Information flow control,Read-abortion role-based synchronization (RA-RBS) protocol,Read-abortion object-based synchronization (RA-OBS) protocol
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要