Geodesic
The level of negative roles of the hierarchical representation of MROSL DP-model
Prikladnaâ diskretnaâ matematika, no. 1 (2018), pp. 58-71.

Voir la notice de l'article provenant de la source Math-Net.Ru

MROSL DP-model is widely used as a mandatory entity-role model of access and information flows security control in Linux-type OS. To make the model to be more adequate for a number of special security features of the Russian OS Astra Linux Special Edition, it has been decided to extend MROSL DP-model by adding to it so called negative roles. In contrast to the ordinary roles, these ones contain access rights which prohibit entities or subject-sessions from getting some access. In this paper, an order of using negative roles in MROSL DP-model is defined, the corresponding changes of conditions and application results for state transformation de-jure rules in MROSL DP-model with negative roles are described, and the correctness of these modified rules are stated, namely: let $G$ and $G'$ be some states of MROSL DP-model with negative roles, $G'$ be a result of transformation de-jure rules application to $G$, and $G$ be satisfying all the conditions for mandatory role access control; then $G'$ also satisfies all these conditions.
Keywords: computer security, role-based access control, negative role. 
@article{PDM_2018_1_a4,
     author = {P. N. Devyanin},
     title = {The level of negative roles of the hierarchical representation of {MROSL} {DP-model}},
     journal = {Prikladna\^a diskretna\^a matematika},
     pages = {58--71},
     publisher = {mathdoc},
     number = {1},
     year = {2018},
     language = {ru},
     url = {http://geodesic.mathdoc.fr/item/PDM_2018_1_a4/}
}
TY  - JOUR
AU  - P. N. Devyanin
TI  - The level of negative roles of the hierarchical representation of MROSL DP-model
JO  - Prikladnaâ diskretnaâ matematika
PY  - 2018
SP  - 58
EP  - 71
IS  - 1
PB  - mathdoc
UR  - http://geodesic.mathdoc.fr/item/PDM_2018_1_a4/
LA  - ru
ID  - PDM_2018_1_a4
ER  - 
%0 Journal Article
%A P. N. Devyanin
%T The level of negative roles of the hierarchical representation of MROSL DP-model
%J Prikladnaâ diskretnaâ matematika
%D 2018
%P 58-71
%N 1
%I mathdoc
%U http://geodesic.mathdoc.fr/item/PDM_2018_1_a4/
%G ru
%F PDM_2018_1_a4
P. N. Devyanin. The level of negative roles of the hierarchical representation of MROSL DP-model. Prikladnaâ diskretnaâ matematika, no. 1 (2018), pp. 58-71. http://geodesic.mathdoc.fr/item/PDM_2018_1_a4/

[1] Sandhu R., “Role-Based Access Control”, Advanced in Computers, 46, Academic Press, 1998

[2] Devyanin P. N., Security Models of Computer Systems. Access Control and Information Flows, Goryachaya liniya – Telekom, Moscow, 2013, 338 pp. (in Russian)

[3] Burenin P. V., Devyanin P. N., Lebedenko E. V., et al., Security of Operating System Astra Linux Special Edition, Goryachaya liniya – Telekom, Moscow, 2016, 312 pp. (in Russian)

[4] Devyanin P. N., “About results of design hierarchical representation of MROSL DP-model”, Prikladnaya Diskretnaya Matematika. Prilozhenie, 2016, no. 9, 83–87 (in Russian) | DOI

[5] Operating System Astra Linux, , 2017 www.astralinux.com

[6] Astra Linux, , 2017 ru.wikipedia.org/wiki/Astra_Linux

[7] Telezhnikov V. Y., “System state transformation rules in DP-model of access control in computer networks based on operating systems of Linux”, Prikladnaya Diskretnaya Matematika, 2016, no. 1(31), 67–85 (in Russian) | DOI | MR

[8] Armando A., Ranise S., “Automated and efficient analysis of role-based access control with attributes”, LNCS, 7371, 2012, 25–40

[9] Kuijper W., Ermolaev V., “Sorting out role based access control”, Proc. SACMAT'14, ACM, N.Y., 2014, 63–74

[10] Devyanin P. N., “Implementation of a non-degenerate lattice integrity levels within the hierarchical representation of MROSL DP-model”, Prikladnaya Diskretnaya Matematika. Prilozhenie, 2017, no. 10, 111–114 (in Russian) | DOI