WO2005122715A3 - A mandatory access control (mac) method - Google Patents

A mandatory access control (mac) method Download PDF

Info

Publication number
WO2005122715A3
WO2005122715A3 PCT/US2005/019192 US2005019192W WO2005122715A3 WO 2005122715 A3 WO2005122715 A3 WO 2005122715A3 US 2005019192 W US2005019192 W US 2005019192W WO 2005122715 A3 WO2005122715 A3 WO 2005122715A3
Authority
WO
WIPO (PCT)
Prior art keywords
access control
mac
mandatory access
objects
conflict
Prior art date
Application number
PCT/US2005/019192
Other languages
French (fr)
Other versions
WO2005122715A2 (en
Inventor
Jinhong Katherine Guo
Stephen L Johnson
Il-Pyung Park
Original Assignee
Matsushita Electric Ind Co Ltd
Jinhong Katherine Guo
Stephen L Johnson
Il-Pyung Park
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Matsushita Electric Ind Co Ltd, Jinhong Katherine Guo, Stephen L Johnson, Il-Pyung Park filed Critical Matsushita Electric Ind Co Ltd
Publication of WO2005122715A2 publication Critical patent/WO2005122715A2/en
Publication of WO2005122715A3 publication Critical patent/WO2005122715A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2113Multi-level security, e.g. mandatory access control
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • Y10S707/99939Privileged access

Abstract

A mandatory access control method for securing an operating system is presented. A first integrity subject (120) reads a first object (130). The first integrity subject attempts to read a second object (110). It is determined that a conflict exists between the first and second objects. At least one security rule is applied to the conflict between the first and the second objects.
PCT/US2005/019192 2004-06-08 2005-06-01 A mandatory access control (mac) method WO2005122715A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/863,784 2004-06-08
US10/863,784 US7243235B2 (en) 2004-06-08 2004-06-08 Mandatory access control (MAC) method

Publications (2)

Publication Number Publication Date
WO2005122715A2 WO2005122715A2 (en) 2005-12-29
WO2005122715A3 true WO2005122715A3 (en) 2006-11-30

Family

ID=35450319

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/019192 WO2005122715A2 (en) 2004-06-08 2005-06-01 A mandatory access control (mac) method

Country Status (2)

Country Link
US (1) US7243235B2 (en)
WO (1) WO2005122715A2 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7600117B2 (en) * 2004-09-29 2009-10-06 Panasonic Corporation Mandatory access control scheme with active objects
US7954135B2 (en) 2007-06-20 2011-05-31 Novell, Inc. Techniques for project lifecycle staged-based access control
US20090048993A1 (en) * 2007-08-13 2009-02-19 Motorola, Inc. Implementation of operating system securing

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6430561B1 (en) * 1999-10-29 2002-08-06 International Business Machines Corporation Security policy for protection of files on a storage device

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6023765A (en) 1996-12-06 2000-02-08 The United States Of America As Represented By The Secretary Of Commerce Implementation of role-based access control in multi-level secure systems
US5937159A (en) 1997-03-28 1999-08-10 Data General Corporation Secure computer system
US6044466A (en) 1997-11-25 2000-03-28 International Business Machines Corp. Flexible and dynamic derivation of permissions
US6304973B1 (en) 1998-08-06 2001-10-16 Cryptek Secure Communications, Llc Multi-level security network system
US6289462B1 (en) 1998-09-28 2001-09-11 Argus Systems Group, Inc. Trusted compartmentalized computer operating system

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6430561B1 (en) * 1999-10-29 2002-08-06 International Business Machines Corporation Security policy for protection of files on a storage device

Also Published As

Publication number Publication date
WO2005122715A2 (en) 2005-12-29
US20050273619A1 (en) 2005-12-08
US7243235B2 (en) 2007-07-10

Similar Documents

Publication Publication Date Title
AU2003292929A1 (en) System and method for validating and operating an access card
AU2002345622A1 (en) System and method for data storage, control and access
AU2001241625A1 (en) System and method for identifying and blocking pornographic and other web content on the internet
HK1090159A1 (en) Automatic teller system and method for operating the same
AU5135000A (en) Biometric system for biometric input, comparison, authentication and access control and method therefor
AU4818201A (en) Method and system for secure access
AU2002365792A1 (en) Iris identification system and method, and storage media having program thereof
AU2002361342A1 (en) System and method for selecting access point
AUPR372601A0 (en) Method and system for secure information
WO2003005627A3 (en) Mobile application access control list security system
AU2002219437A1 (en) Authentication method and data transmission system
FI20001457A0 (en) Calendering method especially for pre-calendering and calender for implementing the method
EP1469404A4 (en) Rights information providing system, method and computer program for realizing the same
EP1197912A3 (en) System for fingerprint authentication
AU2002365521A1 (en) Information providing system, information providing method, and information providing program
WO2005122715A3 (en) A mandatory access control (mac) method
WO2002044949A3 (en) Minimal identification of features
AU2001269870A1 (en) System and method for security policy
AU2002241606A1 (en) Method and system for collaborating advisors
AU4714100A (en) Biometric system for biometric input, comparison, authentication and access control and method therefor
AU2002236188A1 (en) Method and system for literal data access
AU2001267087A1 (en) System and method for client document certification and validation by remote host
AUPR704101A0 (en) System and method for determining audience characteristics.
AU2002323431A1 (en) A secure access method and system
AU4851000A (en) Biometric system for biometric input, comparison, authentication and access control and method therefor

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

122 Ep: pct application non-entry in european phase