A Multilevel Security Model for Private Cloud

Towards data leak caused by misoperation and malicious inside users, we proposed a multilevel se- curity model based on Bell-lapadula (BLP) model. In our model each subject was assigned with a security level. Sub- jects can read objects only when their security levels are not less than objects' secu...

Full description

Saved in:
Bibliographic Details
Published in:Chinese Journal of Electronics 2014-04, Vol.23 (2), p.232-235
Main Authors: Xue, Haiwei, Zhang, Yunliang, Guo, Zhien, Dai, Yiqi
Format: Article
Language:English
Subjects:
原型系统
多级安全模型
安全水平
安全级别
强制访问控制
敏感数据
数学方法
用户数据
Citations: Items that this one cites
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Towards data leak caused by misoperation and malicious inside users, we proposed a multilevel se- curity model based on Bell-lapadula (BLP) model. In our model each subject was assigned with a security level. Sub- jects can read objects only when their security levels are not less than objects' security levels, and subjects can write objects only when their security levels are not more than objects' security levels. The current security level in our model can be dynamically changed when users read sensi- tive data, since users can access data with different security levels in private cloud. Our model use mandatory access control method to control user's operation and can guar- antee that users can not leak sensitive data after they read them. Our model can be proved secure by mathematical method, and we implemented a prototype system of our model and the experimental results show that it is secure.
ISSN:1022-4653
2075-5597
DOI:10.23919/CJE.2014.10851904