Factoring High Level Information Flow Specifications into Low Level Access Controls

I
IWIA
2006
Fourth IEEE International Workshop on Information Assurance (IWIA'06)
Abstract - Factoring High Level Information Flow Specifications into Low Level Access Controls

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Kevin Kahley Articles by Manigandan Radhakrishnan Articles by Jon A. Solworth

Fourth IEEE International Workshop on Information Assurance (IWIA'06)

Royal Holloway, United Kingdom

April 13-April 14

ISBN: 0-7695-2564-4

	ASCII Text	x
	Kevin Kahley, Manigandan Radhakrishnan, Jon A. Solworth, "Factoring High Level Information Flow Specifications into Low Level Access Controls," Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on, pp. 169-186, Fourth IEEE International Workshop on Information Assurance (IWIA'06), 2006.

	BibTex	x
	@article{ 10.1109/IWIA.2006.8, author = {Kevin Kahley and Manigandan Radhakrishnan and Jon A. Solworth}, title = {Factoring High Level Information Flow Specifications into Low Level Access Controls}, journal ={Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on}, volume = {0}, year = {2006}, isbn = {0-7695-2564-4}, pages = {169-186}, doi = {http://doi.ieeecomputersociety.org/10.1109/IWIA.2006.8}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on TI - Factoring High Level Information Flow Specifications into Low Level Access Controls SN - 0-7695-2564-4 SP169 EP186 A1 - Kevin Kahley, A1 - Manigandan Radhakrishnan, A1 - Jon A. Solworth, PY - 2006 KW - null VL - 0 JA - Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on ER -

Kevin Kahley, University of Illinois at Chicago

Manigandan Radhakrishnan, University of Illinois at Chicago

Jon A. Solworth, University of Illinois at Chicago

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IWIA.2006.8

Low level access controls must provide efficient mechanisms for allowing or denying operations and hence are typically based on the access matrix. However, when combining the goals of efficiency along with the support for least privilege and higher level authorization properties (such as information flow confidentiality), the resulting access controls become tedious to encode.

Compositional high level specifications can be much more succinct. When combined with administrative controls, they can be robust in changing what is authorized in a controlled manner. Such specifications offer the promise of being easier to configure and understand, and in fact can be automatically analyzed for authorization properties.

However, there remains the issue of how to generate the low level access control configuration from the high level specification. In this paper, we describe a factoring algorithm to algorithmically translate a high level specification of information flow authorization properties into low level access controls. In addition, several optimizations are given which dramatically reduce the size of the access control configuration generated.

Citation:

Kevin Kahley, Manigandan Radhakrishnan, Jon A. Solworth, "Factoring High Level Information Flow Specifications into Low Level Access Controls," iwia, pp.169-186, Fourth IEEE International Workshop on Information Assurance (IWIA'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.