论文信息 - Verifying enterprise's mandatory access control policies with coloured Petri nets

Verifying enterprise's mandatory access control policies with coloured Petri nets

The paper addresses important problems met when implementing mandatory access control policies in complex distributed systems (e.g. enterprise networks). The role of formal security models is also presented and the properties of the model suitable for systems under consideration are defined. Then a formal security model, Secure Coloured Petri - using coloured Petri net's semantics - is proposed. It is shown how the enterprise security management system may take advantage of the proposed model's properties. Application of coloured Petri nets analysis and construction methods to information flow security analysis is also proposed and discussed.

Krzysztof Juszczyszyn | K. Juszczyszyn

[1] Lawrence Charles Paulson,et al. ML for the working programmer , 1991 .

[2] Kurt Jensen,et al. Coloured Petri Nets , 1997, Monographs in Theoretical Computer Science An EATCS Series.

[3] Dorothy E. Denning,et al. A lattice model of secure information flow , 1976, CACM.

[4] Vijay Varadharajan,et al. Petri net based modelling of information flow security requirements , 1990, [1990] Proceedings. The Computer Security Foundations Workshop III.

[5] D. Elliott Bell,et al. Secure Computer System: Unified Exposition and Multics Interpretation , 1976 .

[6] Trent Jaeger. Managing access control complexity using metrices , 2001, SACMAT '01.

[7] Miroslaw Zakrzewski. Mandatory Access Control for Linux Clustered Servers , 2002 .