To obtain access to full text of journal and articles you must register!
- Article name
- Session access control implementation correctness problems
- Authors
- Shcheglov A. Yu., , info@npp-itb.spb.ru, St.-Petersburg State University of Information Technology, Mechanics and Optics, St.-Petersburg, Russia
Shcheglov K. A., , info@npp-itb.spb.ru, The St.-Petersburg National Research University of Information Technology, Mechanics and Optics (NRU ITMO), Russia
- Keywords
- information security / access control / session / confidential level / access level / security label (mandate) / handling mode / confidential information leakage
- Year
- 2016 Issue 3 Pages 36 - 42
- Code EDN
- Code DOI
- Abstract
- We researchsession problem of access control implementation correctness, which is the most important modern security mechanism used to prevent confidential information leakage (basing on sessions creating and separation through different confidential levels information handling support). We did a reasonable conclusion that session (as access subject) can't be included into access policy (which allows users to work in different sessions with the same user account) because such sessions access control implementation is potentially dangerous. We review session access control method based on session assigning with user account, implemented similar to suggested newly created files access control method. This technical solution is approved and patented. It differs from other methods not only by extremely administration simplicity (because of setting security labels only to user account while creating access policy), but also by access policy correct implementation in general.
- Text
- To obtain access to full text of journal and articles you must register!
- Buy
