OpenAIRE is about to release its new face with lots of new content and services.
During September, you may notice downtime in services, while some functionalities (e.g. user registration, login, validation, claiming) will be temporarily disabled.
We apologize for the inconvenience, please stay tuned!
For further information please contact helpdesk[at]

fbtwitterlinkedinvimeoflicker grey 14rssslideshare1
Kort, Semen; Kulagin, Dimitry; Rudina, Ekaterina (2017)
Types: Conference object
Subjects: security system, security policy, security configuration, separation of duties, validation
Separation of duties (SoD) is an important concept aimed to constrain the excessive powers of subjects regarding system assets and control functions. Ensuring the fact that SoD is properly implemented for the particular task may require the individual approach in every given case. This paper proposes an approach to SoD validation conducted by the analysis of the security configuration of MILS-based solution. The security policy based on object capabilities is considered for this purpose. For this security policy two basic issues should be met. The first issue is the enough expressivity of the security policy. It is addressed with demonstration of particular examples of usage scenarios. The second issue regards the conditions under which the security problem remains tractable. Solving this issue in context of specifically defined SoD criteria is at the core of this research. The approach is implemented for the security configurations of Kaspersky Security System.
  • No references.
  • No related research data.
  • No similar publications.

Share - Bookmark

Download from

Cite this article

Collected from

Cookies make it easier for us to provide you with our services. With the usage of our services you permit us to use cookies.
More information Ok