The level of negative roles of the hierarchical representation of MROSL DP-model
Prikladnaâ diskretnaâ matematika, no. 1 (2018), pp. 58-71
Voir la notice de l'article provenant de la source Math-Net.Ru
MROSL DP-model is widely used as a mandatory entity-role model of access and information flows security control in Linux-type OS. To make the model to be more adequate for a number of special security features of the Russian OS Astra Linux Special Edition, it has been decided to extend MROSL DP-model by adding to it so called negative roles. In contrast to the ordinary roles, these ones contain access rights which prohibit entities or subject-sessions from getting some access. In this paper, an order of using negative roles in MROSL DP-model is defined, the corresponding changes of conditions and application results for state transformation de-jure rules in MROSL DP-model with negative roles are described, and the correctness of these modified rules are stated, namely: let $G$ and $G'$ be some states of MROSL DP-model with negative roles, $G'$ be a result of transformation de-jure rules application to $G$, and $G$ be satisfying all the conditions for mandatory role access control; then $G'$ also satisfies all these conditions.
Keywords:
computer security, role-based access control, negative role.
@article{PDM_2018_1_a4,
author = {P. N. Devyanin},
title = {The level of negative roles of the hierarchical representation of {MROSL} {DP-model}},
journal = {Prikladna\^a diskretna\^a matematika},
pages = {58--71},
publisher = {mathdoc},
number = {1},
year = {2018},
language = {ru},
url = {http://geodesic.mathdoc.fr/item/PDM_2018_1_a4/}
}
P. N. Devyanin. The level of negative roles of the hierarchical representation of MROSL DP-model. Prikladnaâ diskretnaâ matematika, no. 1 (2018), pp. 58-71. http://geodesic.mathdoc.fr/item/PDM_2018_1_a4/