A CONSISTENT MODEL OF MANDATORY ACCESS CONTROL
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; postgraduate; development manager
A. Y. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; Professor; General Director
Read the full article
Abstract. A much used confidential leveling mandatory access control model is studied. Inconsistency and principle disadvantages of the model are revealed which do not allow for creation of a safe system based on it. New integrity and accessibility model, as well as consistent mandatory access control model are developed and justified; application of the latter model is shown to prevent confidential information leakage and to solve the problems of information integrity and accessibility.
Keywords:
information security, access control, access rights, mandate, information leveling, confidential levels
