| Presentation | 1993/8/30 A Method of Discretionary Access Control Preventing Indirect Information Leakage Hyung Suck Kang, Tsutomu Matsumoto, Hideki Imai, |
|---|---|
| PDF Download Page | PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | The discretionary access control(DAC)policies commonly used in ordinary inputer systems are implemented fairly simple and straightforward,therefore they have several drawbacks.To achieve a relatively high efficiency,implementations based on DAC policies often adopt the group access permission for each subject such as user,group,etc.But this causes indirect information leakage.This paper proposes a method of DAC attaining both high confidentiality and efficiency.To manage information flows the method uses the dynami′c restriction on group access permission.It prevents unauth orized indirect information leakage with the control based on forcedly changed user access permission.All the operations of each module in this mechanism are processed at the security kernel. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | DAC / Indirect information leakage / Information security / dynamic restriction / security Kernel / access control |
| Paper # | ISEC93-27 |
| Date of Issue |
| Conference Information | |
| Committee | ISEC |
|---|---|
| Conference Date | 1993/8/30(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information Security (ISEC) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | A Method of Discretionary Access Control Preventing Indirect Information Leakage |
| Sub Title (in English) | |
| Keyword(1) | DAC |
| Keyword(2) | Indirect information leakage |
| Keyword(3) | Information security |
| Keyword(4) | dynamic restriction |
| Keyword(5) | security Kernel |
| Keyword(6) | access control |
| 1st Author's Name | Hyung Suck Kang |
| 1st Author's Affiliation | Division of Electrical and computer Engineering,YOKOHAMA National University() |
| 2nd Author's Name | Tsutomu Matsumoto |
| 2nd Author's Affiliation | Division of Electrical and computer Engineering,YOKOHAMA National University |
| 3rd Author's Name | Hideki Imai |
| 3rd Author's Affiliation | Institute of Industrial Science,University of Tokyo |
| Date | 1993/8/30 |
| Paper # | ISEC93-27 |
| Volume (vol) | vol.93 |
| Number (no) | 208 |
| Page | pp.pp.- |
| #Pages | 7 |
| Date of Issue | |