An Operating System Oriented RBAC Model and Its Implementation

The construction and implementation of an operating system oriented RBAC model are discussed in this paper. Firstly, on the basis of the RBAC96 model, a new RBAC model named “OSR” is presented and formalized by adding executable-file component and subdividing permission component. Secondly, the OSR model is enforced in the secure Linux kernel by integrating the GFAC method and capability mechanism together.