Proceedings of the Institute for System Programming of the RAS
RUS  ENG    JOURNALS   PEOPLE   ORGANISATIONS   CONFERENCES   SEMINARS   VIDEO LIBRARY   PACKAGE AMSBIB  
General information
Latest issue
Archive

Search papers
Search references

RSS
Latest issue
Current issues
Archive issues
What is RSS


Proceedings of ISP RAS:
Year:
Volume:
Issue:
Page:
Find




Personal entry:
Login:
Password:
Save password
Enter
Forgotten password?
Register

Proceedings of the Institute for System Programming of the RAS, 2020, Volume 32, Issue 1, Pages 7–26
DOI: https://doi.org/10.15514/ISPRAS-2020-32(1)-1 (Mi tisp483) 		 
This article is cited in 4 scientific papers (total in 4 papers)

Integrating RBAC, MIC, and MLS in verified hierarchical security model for operating system

P. N. Devyanina, V. V. Kuliaminbcd, A. K. Petrenkodcb, A. V. Khoroshilovedbc, I. V. Shchepetkovd

a RusBITech
b National Research University, Higher School of Economics
c Lomonosov Moscow State University
d Ivannikov Institute for System Programming of the Russian Academy of Sciences
e Moscow Institute of Physics and Technology (State University)
Full-text PDF (504 kB) Citations (4)
References:
PDF
HTML
DOI: https://doi.org/10.15514/ISPRAS-2020-32(1)-1
Abstract: Designing a trusted access control mechanism of an operating system (OS) is a complex task if the goal is to achieve high level of security assurance and guarantees of unwanted information flows absence. Even more complex it becomes when the integration of several heterogeneous mechanisms, like role-based access control (RBAC), mandatory integrity control (MIC), and multi-level security (MLS) is considered. This paper presents results of developement of a hierarchical integrated model of access control and information flows (HIMACF), which provides a holistic integration of RBAC, MIC, and MLS preserving key security properties of all those mechanisms. Previous version of this model is called MROSL DP-model. Now the model is formalized using Event-B formal method and its correctness is formally verified. In the hierarchical representation of the model, each hierarchy level (module) corresponds to a separate security control mechanism, so the model can be verified with less effort reusing the results of verification of lower level modules. The model is implemented in a Linux-based operating system using the Linux Security Modules infrastructure.
Keywords: Formal access control model, role-based access control, mandatory integrity control, multi-level security, formal verification, Event-B, Astra Linux.
Funding agency Grant number
Russian Foundation for Basic Research 18-01-00378
This study is supported by the Russian Foundation for Basic Research grant #18-01-00378.
Document Type: Article
Language: Russian
Citation: P. N. Devyanin, V. V. Kuliamin, A. K. Petrenko, A. V. Khoroshilov, I. V. Shchepetkov, “Integrating RBAC, MIC, and MLS in verified hierarchical security model for operating system”, Proceedings of ISP RAS, 32:1 (2020), 7–26
Citation in format AMSBIB
\Bibitem{DevKulPet20}
\by P.~N.~Devyanin, V.~V.~Kuliamin, A.~K.~Petrenko, A.~V.~Khoroshilov, I.~V.~Shchepetkov
\paper Integrating RBAC, MIC, and MLS in verified hierarchical security model for operating system
\jour Proceedings of ISP RAS
\yr 2020
\vol 32
\issue 1
\pages 7--26
\mathnet{http://mi.mathnet.ru/tisp483}
\crossref{https://doi.org/10.15514/ISPRAS-2020-32(1)-1}
Linking options:
  • https://www.mathnet.ru/eng/tisp483
  • https://www.mathnet.ru/eng/tisp/v32/i1/p7
    • This publication is cited in the following 4 articles:
    Citing articles in Google Scholar: Russian citations, English citations
    Related articles in Google Scholar: Russian articles, English articles
    		Proceedings of the Institute for System Programming of the RAS
    Statistics & downloads:
    Abstract page:261
    Full-text PDF :171
    References:19
     
      Contact us:
    		  Terms of Use  Registration to the website  Logotypes © Steklov Mathematical Institute RAS, 2024