Chinese Wall Policy and Its Extension in Multilevel Security System

Abstract

Abstract: The Chinese Wall security policy is an excellent example of a commercial nondisclosure policy. To extend Chinese Wall policy in multilevel security environment, authors use lattice to label data, and propose an improving policy in term of aggregate system. Moreover, authors present a scheme using a database based history access and linklist of aggregate dataset of interest conflict.

Key words: Chinese Wall policy, data aggregate, lattice label, history access database

摘要： Chinese Wall安全策略因不同于BLP的动态特性而备受人们关注，但Brewer和Nash定义的Chinese Wall策略只适用一定的应用范围，没有考虑普遍存在的多级访问控制的限制条件。本文主要结合多级安全环境，分析研究具有多级访问控制环境的Chinese Wall策略的扩展实现。根据该环境中的Chinese Wall的利益冲突处理表现为数据聚合问题，利用数据标签的格级标定，提出一种基于历史访问库和利益冲突聚合链表的安全策略实现方法

关键词: ChineseWall策略, 数据聚合, 格级, 历史访问库

CLC Number:

TP309

QIN Chao,CHEN Zhong,DUAN Yunsuo. Chinese Wall Policy and Its Extension in Multilevel Security System[J]. Acta Scientiarum Naturalium Universitatis Pekinensis.

秦超,陈钟,段云所. Chinese Wall策略及其在多级安全环境中的扩展[J]. 北京大学学报（自然科学版）.

[1]	ZHANG Liwei,ZHU Yuesheng,Po Lai-man. A Fast Watermarking Algorithm with Low Complexity Error Compensation in H.264/AVC Bit-Stream [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2013, 49(2): 227-233.
[2]	XU Dongyang,TANG Zhi,YU Yinyan. SDDRM: Toward Segment-Based Dynamic Digital Rights Management in Document Protection [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2012, 48(4): 565-573.
[3]	YOU Juan,XIA Song,LI Junquan. Identity-Based Authenticated Key Agreement Protocols without Bilinear Pairing in Multiple PKG Environments [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2012, 48(2): 223-230.
[4]	GUO Feiwang,ZHANG Xiyong,HAN Wenbao. Several Binomial Functions with Low Differential Uniformity [J]. , 2011, 47(6): 973-977.
[5]	FENG Xue,YU Yinyan,TANG Zhi. Hardware Adaptive Copyright Protection Method for Multiple Devices of End-User [J]. , 2011, 47(6): 1009-1016.
[6]	TIAN Yun,CHEN Gongliang,LI Jianhua. On the Design of Trivium [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2010, 46(5): 691-698.
[7]	WU Hongfeng,FENG Rongquan,WANG Zilong. Isomorphism Classes of Elliptic Curves with 3-Torsion Point [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2010, 46(5): 699-703.
[8]	CHEN Yangkui,YU Jia,CHENG Xiangguo,HAO Rong,LIU Hongyan,LI Xin. Verifiable Multi-secret Sharing Scheme Based on Homogeneous Linear Recursion [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2010, 46(5): 709-714.
[9]	LU Linzhen,CHEN Shaozhen. Two Attacks on 5-Round IDEA [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2010, 46(5): 731-735.
[10]	CHENG Zhengjie,CHEN Kefei,LAI Xuejia. Security Analysis of Cryptographic Protocols Based on Fine-Grained Freshness [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2010, 46(5): 763-770.
[11]	LIU Yong,CHEN Yu,CHEN Zhong. Optimize Cryptographic Symmetric Primitives Performance [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2008, 44(5): 733-738.
[12]	HAN Xinhui,LONG Qin,SI Duanfeng,ZHUGE Jianwei,YE Zhiyuan. A Practical Hierarchical Key Management Scheme Based on One-Way Hash Function [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2008, 44(4): 527-536.
[13]	ZHU Xinshan,TANG Zhi. Adaptive Watermarking Based on Localized Perceptual Quality Evaluation [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2008, 44(1): 77-86.
[14]	HAN Xinhui,SI Duanfeng,ZOU Wei. A New Adaptive Playout Algorithm Based on E-Model with Packet Loss Dependency Characteristic [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2006, 42(3): 388-394.
[15]	LIU Qiang,MA Fangzhen,TONG Dong,CHENG Xu. Design Features of a High Throughput RSA Cryptoprocessor [J]. Acta Scientiarum Naturalium Universitatis Pekinensis, 2005, 41(5): 754-763.

Chinese Wall Policy and Its Extension in Multilevel Security System

Chinese Wall策略及其在多级安全环境中的扩展

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics