Separation of Duty Model Based on Chinese Wall Security Policy

Separation of duty(SoD)is a fundamental means for prevention of fraud and errors.Based on the Chinese wall security policy,a model of history-based separation of duty is implemented and it tracks the history of user's previous permissions record,from which the current permissions assigned to can be determined.The formal description and analysis about the model has been done and the model has been proved a well in accordance with principle of SoD.The model inherits the advantage of Chinese Wall security policy and separation of duty,and provides a more perfect access control stratagem.

[1]  Jiebo Luo,et al.  Quantitative evaluation of rank-order similarity of images , 2000, Proceedings 2000 International Conference on Image Processing (Cat. No.00CH37101).

[2]  Moshe Lewenstein,et al.  Overlap matching , 2001, SODA '01.

[3]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[4]  Jason F. Ralph,et al.  Scene-referenced object localization , 2004, SPIE Defense + Commercial Sensing.

[5]  Michael J. Nash,et al.  Some conundrums concerning separation of duty , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[6]  D. Richard Kuhn,et al.  Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems , 1997, RBAC '97.

[7]  Michael J. Nash,et al.  The Chinese Wall security policy , 1989, Proceedings. 1989 IEEE Symposium on Security and Privacy.

[8]  Mary Ellen Zurko,et al.  Separation of duty in role-based environments , 1997, Proceedings 10th Computer Security Foundations Workshop.