ISSN 0021-3454 (print version)
ISSN 2500-0381 (online version)
Menu

9
Issue
vol 60 / SEPTEMBER, 2017
Article
UDC 004.056.53

A CONSISTENT MODEL OF MANDATORY ACCESS CONTROL

K. A. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; postgraduate; development manager


A. Y. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; Professor; General Director


Read the full article 

Abstract. A much used confidential leveling mandatory access control model is studied. Inconsistency and principle disadvantages of the model are revealed which do not allow for creation of a safe system based on it. New integrity and accessibility model, as well as consistent mandatory access control model are developed and justified; application of the latter model is shown to prevent confidential information leakage and to solve the problems of information integrity and accessibility.
Keywords: information security, access control, access rights, mandate, information leveling, confidential levels