Research Article
A Theoretical Security Model for Access Control and Security Assurance
@INPROCEEDINGS{10.1109/IAS.2007.55, author={Bo-Chao Cheng and Huan Chen and Ryh-Yuh Tseng}, title={A Theoretical Security Model for Access Control and Security Assurance}, proceedings={3rd International ICST Symposium on Information Assurance and Security}, publisher={IEEE}, proceedings_a={IAS}, year={2007}, month={9}, keywords={Access control Communication system security Computer hacking Computer security Information security National security Network topology Process control Protection Prototypes}, doi={10.1109/IAS.2007.55} }- Bo-Chao Cheng
Huan Chen
Ryh-Yuh Tseng
Year: 2007
A Theoretical Security Model for Access Control and Security Assurance
IAS
IEEE
DOI: 10.1109/IAS.2007.55
Abstract
Advanced hacker techniques make the effective defense at the network security perimeters impossible. Many security solutions are proposed by researchers and practitioners in recent years, most of them focus on how to enhance the functionality and capability of security modules, but few of them emphasize on the assurance assessments of security modules. Security assurance intends to provide a degree of confidence instead of a true measure of how secure the system is. Security assurance should be measured and controlled in the process of security management life cycle. In this paper, we propose a security model, object association binding (OAB), to unify the access control policies and to provide an objective assessment for the confidence level of network security assurance. Based on the design principles of OAB, its prototype called network security policy assistant (NSPA) is implemented.
