Tan Zhiyong,Liu Duo,Dai Yiqi

DOI: https://doi.org/10.23919/cje.2010.10159181

IF: 1.019

2010-01-01

Chinese Journal of Electronics

Abstract:To evaluate and choose proper credibility evaluation functions and credibility threshold parameters in the Multilevel security (MLS) system based on the CBLP model which was proposed in the authors' previous paper, we devised a sampling statistics method to evaluate the availability of the MLS system, by obtaining the change curve of the subjects' credibility and the rejection ratio of access operations. The validity of this method was evaluated according to the strong law of large numbers and the central limit theorem. The analysis of specific scenarios showed that the result of the sampling statistics method is highly consistent with that of the formal analysis methods. Then an implementation framework based on the availability evaluation method is proposed. Since it is hard to evaluate the availability of the system completely by formalization analysis, the sampling statistics analysis method can provide an important reference for the effective implementation of the CBLP system.

Zhi-yong TAN,Duo LIU,Tian-ge SI,Yi-qi DAI

DOI: https://doi.org/10.3321/j.issn:0372-2112.2008.08.029

2008-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:A multilevel security (MLS) model with credibility characteristics was proposed to solve the problem of trusted subjects' hidden security flaw and poor system usability in present MLS systems. By introducing credibility labels of subjects and objects and credibility evaluation functions in original BLP model, it can evaluate credibility of access requests as well as corresponding credibility variation of subjects and objects. Since this model establishes restriction mechanism against trusted subjects and assigns limited privileges to all subjects, it is more flexible and practicable than present security-label based MLS models.

Xuezeng Pan

DOI: https://doi.org/10.3785/j.issn.1008-973x.2009.08.005

2009-01-01

Abstract:To resolve the problem that the simple combination of BLP and Biba models will lead to poor availability,a confidentiality and integrity dynamic union model based on multi-level security(MLS) policy was presented.The two dimensions of secure model are composed of confidentiality and integrity,on which the security label is separated into write privilege range and read privilege range respectively,whereupon subject's access range is adjusted dynamically according to the security label of related objects and the history situation of the subject's access,improving the agility and practicability of the model.The formal definition of this model was given,and the security was also analyzed with proof.Finally,examples were illuminated to show the effectiveness and usability of this model.

刘雄,谭智勇,刘铎,戴一奇

DOI: https://doi.org/10.16511/j.cnki.qhdxxb.2010.01.028

2010-01-01

Abstract:The BLP (Bell-LaPadula) model and its derivatives are normally used to implement secure policies in multilevel security systems. The derivatives improved the flexibility but also introduce risks which have not been analyzed in detail. This paper investigates the multilevel security model with credibility characteristics to analyze the security of actions using the quantitative risk analysis method to compute the expected damage resulting from an action. The analysis result can be used to evaluate system security and as a criterion to judge the validity of the action. The system can then control the damage and improve flexibility.

曾璎珞,潘雪增,陈健

DOI: https://doi.org/10.3969/j.issn.1000-3428.2010.10.052

2010-01-01

Abstract:This paper proposes a dynamic security access control model based on system reliability,so as to improve the flexibility of combination among multiple security access control strategies,and to ensure system security and practicality.The model can choose the proper kind of combination among the security access control strategies dynamically in order to deal with different system states and improve the whole system performance.Experimental results prove that this model makes the multiple strategies control more flexible,ensures the system security,and improves practicality of the system.

Cui Yan-Li,Zhang Xing

DOI: https://doi.org/10.1109/fitme.2009.68

2009-01-01

Abstract:During the realizing process of remote attestation, except for using trusted computing technology to protect physical security, storage security and operation security of certifier, cipher mechanism need to be combined to ensure the credibility of attestation method of certifier. This paper designs an attestation method model of property remote attestation, and applies the authentication and access control logic technology to make formal description for the participants of attestation method of property remote attestation, and finally prove the credibility of attestation method. Paper's research conclusion proves, after increasing the authority of certificate and trusted property certificate, the credibility of property remote attestation method can be guaranteed among the computing environment applying the public key infrastructure participates.

Jian Ji,Zhen Jiang,Zheming Zhang,Wenwang Liao,Zhijun Wu,Qing Lu

DOI: https://doi.org/10.1061/(asce)gm.1943-5622.0002156

IF: 3.918

2021-01-01

International Journal of Geomechanics

Abstract:Surrogate models are helpful tools to enhance the efficiency for intensive computations of the factor of safety (FoS) in probabilistic slope stability evaluation. This study presents a multilayer perceptron (MLP)-based surrogate model combined with the Monte Carlo simulation (MCS) for system reliability analysis of earth slopes. The MLP-based surrogate model is constructed derived from the space-filling Latin hypercube sampling (LHS) for a global prediction of the FoS. Several factors affecting the performance of the MLP model are studied in detail, including the training algorithm, the generation method and size of samples, and the hyperparameters. Three examples with system effects are tested to verify the performance of the proposed method. The results show that the MLP-based MCS can achieve high accuracy and efficiency for the system failure probability assessment of soil slopes in different failure zones.

Cui Yan-Li,Xing Zhang

DOI: https://doi.org/10.1109/PACIIA.2009.5406422

2009-01-01

Abstract:For trusted computing technology, as the basis of remote attestation, system integrity measurement whose theory model and application research is all along a discussed focus. Integrity measurement of binary system of trusted computing technology used the transmission model of trust chain, but the development of this model is late to the development of remote attestation. This paper mainly concerns systems integrity measurement of property remote attestation, adds certificate authority and trusted property authority based on the original binary integrity measurement, realizes the conversion from binary fingerprints convert to property remote attestation. Combining the new features of property remote attestation, this paper uses the predicate logic to prove the credibility of systems integrity measurement of property remote attestation. ©2009 IEEE.

Jun Li,Xiaolin Zheng,Yafeng Wu,Deren Chen

DOI: https://doi.org/10.1109/icebe.2010.27

2010-01-01

Abstract:In C2C e-commerce environment it is possible and indeed quite common to deal with unknown sellers, whose reliability are unknown. Reputation system is a popular technique currently used for providing a global quality score of sellers to consumers. However, such global information is far enough for clients to choose the most qualified products. In the real word, we always ask our trusted friends for some recommended information or trust the information recommended by the clients who have similar preference in recommender systems. Aiming at providing some more useful trust information to consumers, we propose a computational trust model based on the social network which is constructed by the similarity of users in the C2C e-commerce environment, and use a local trust metric for propagating trust in the constructed network. Experiments show that our model can produce a personalized recommended trust value for a specific user, which is more accuracy than a global value in some cases.

Pau-Chen Cheng,Pankaj Rohatgi,Claudia Keser,Paul A. Karger,Grant M. Wagner,Angela Schuett Reninger

DOI: https://doi.org/10.1109/sp.2007.21

2007-05-01

Abstract:This paper presents a new model for, or rather a new way of thinking about adaptive, risk—based access control. Our basic premise is that there is always inherent uncertainty and risk in access control decisions that is best addressed in an explicit way. We illustrate this concept by showing how the rationale of the well—known, Bell—Lapadula model based, Multi-Level Security (MLS) access control model could be used to develop a risk-adaptive access control model. This new model is more like a Fuzzy Logic control system [9] than a traditional access control system and hence the name “Fuzzy MLS”. The long version of this paper is published as an IBM Research Report [3].

Xie Jun,Xu Feng,Huang Hao

2004-01-01

Ruan Jian Xue Bao/Journal of Software

Abstract:MLS (multilevel security) is being widely applied in many security critical systems, but it can't implement many important security policies such as channel-control. In this paper, the concept of trust degree is introduced into the MLS to implement policies like channel-control conveniently. An access control state machine model which enforces the trust degree based multilevel security policy is established, and is proved to be secure for this policy. It is also proved that this model can enforce all static information flow policies. An extension of the model is also offered to support the dynamic change of storage objects' security labels. The model avoids the disadvantage of MLS' not being able to resolve the problem of secure downgrading and not taking integrity into consideration, and at the same time it retains the advantage of easy understanding and use enjoyed by the traditional classified policy models.

LIU Xiong,ZHUO Xue-jun,TANG Yong-li,DAI Yi-qi

2010-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:Many typical security models have been proposed, such as the BLP model and the nondeducibility model, however, these models have some disadvantages and limitations in theoretical analysis or implementation respectively. For instance, BLP model did not take the covert channel into account, and the nondeducibility model cannot be applied to the nondeterministic systems. Considering these shortages brought about by the existing works, this paper take the properties of the covert channel as a main consideration, and propose a novel finite-information-leakage-tolerance communication channel model based on the BLP model. The proposed model finds a tradeoff between the availability and security of the practical system by adjusting the upper bound of the channel capacity of the information leakage.

Gang Liu,Guofang Zhang,Runnan Zhang,Juan Cui,Quan Wang,Shaomin Ji

DOI: https://doi.org/10.1109/ISNCC.2017.8071977

2017-01-01

Abstract:Bell-LaPadula model is the most classical multilevel security access control model, however, the existence of the response blind area in Bell-LaPadula model is a great threat for system. In this paper we propose an improved Bell-LaPadula model combining with obligation mechanism. Response mechanism is also introduced in the improved model which can resolve the disadvantage of response blind area. Furthermore, the security of the improved model and covert channel is analyzed in detail.

Zhiyong Tan,Duo Liu,Xuejun Zhuo,Yiqi Dai,Laurence T. Yang

DOI: https://doi.org/10.1007/s11227-011-0732-z

IF: 3.3

2013-01-01

The Journal of Supercomputing

Abstract:This paper presents the design and implementation features of Centralized Pervasive Computing Environment/Multilevel Security (CPCE/MLS), a multilevel security (MLS) system in pervasive computing environment deployed in Local area network (LAN) with a Mandatory Access Control (MAC) mechanism. By introducing the server-storage terminals and implementing the multilevel security access control mechanism based on the Bell---LaPadula model, process creation supervision, and an auditing mechanism, the CPCE/MLS system is able to provide the security guarantee of the whole computing environment. As such, each terminal is controlled under an integrated security policy. The performance test results show that the CPCE/MLS system, without optimization, generates great overhead but achieves significantly better performance after the cache mechanism is added in the monitor agent and in the hook driver. The system with the hook driver cache mechanism is able to achieve the 95.9% throughput of the native system with 8 K and 16 K requested data blocksize.

Xiao-long XU,Qun TU,Xin-heng WANG,Ru-chuan WANG

DOI: https://doi.org/10.1016/s1005-8885(14)60300-9

2014-01-01

Abstract:Non-center network computing environments have some unique characteristics,such as instability,heterogeneity,autonomy,distribution and openness,which bring serious issues of security and reliability.This article proposes a brand-new credibility protection mechanism for resource sharing and collaboration in non-center network computing environments.First,the three-dimensional hierarchical classified topology（3DHCT）is proposed,which provides a basic framework for realizations of the identity credibility,the behavior credibility and the capability credibility.Next,the agent technology is utilized to construct the credibility protection model.This article also proposes a new comprehensive credibility evaluation algorithm with simple,efficient,quantitative and able to meet the requirements of evaluating behavior credibility and the capability credibility evaluation as well.The Dempster-Shafer theory of evidence and the combination rule are used to achieve the evaluation of the capability credibility.The behavior credibility is evaluated with the current and historical performance of nodes for providers and consumers to realize more accurate prediction.Based on the non-center network computing simulation test platform,simulation is been conducted to test the performance and validity of the proposed algorithms.Experiment and analysis show that the proposed algorithms are suitable for large-scale,dynamic network computing environments,and able to maintain the credibility for networks without relying on central node,make a non-center network gradually evolve into an orderly,stable and reliable computing environment efficiently.

Xiaolong Xu,Qun Tu,Xinheng Wang

DOI: https://doi.org/10.1007/978-3-642-45293-2_20

2013-01-01

Abstract:Decentralized networks have some unique characteristics, such as heterogeneity, autonomy, distribution and openness, which lead to serious security issues and low credibility. In this paper, the agent technology is utilized to construct a novel credibility protection model, which efficiently makes open, disordered, decentralized networks evolve gradually as an orderly, stable and reliable computing environment. Within this model, our research is focused on the credibility measurement mechanism, and a novel behavior-credibility evaluation algorithm is proposed. The evaluation value of behavior-credibility is calculated based on the current and historical performances of nodes as service providers and consumers to make an accurate prediction. Based on a decentralized network simulation environment, we conducted several rounds of simulation experiments to test the function, performance and validity of the model, mechanism and algorithm.

Xue Haiwei,Zhang Yunliang,Guo Zhien,Dai Yiqi

IF: 1.019

2014-01-01

Chinese Journal of Electronics

Abstract:Towards data leak caused by misoperation and malicious inside users, we proposed a multilevel security model based on Bell-lapadula（BLP） model. In our model each subject was assigned with a security level. Subjects can read objects only when their security levels are not less than objects’ security levels, and subjects can write objects only when their security levels are not more than objects’ security levels. The current security level in our model can be dynamically changed when users read sensitive data, since users can access data with different security levels in private cloud. Our model use mandatory access control method to control user’s operation and can guarantee that users can not leak sensitive data after they read them. Our model can be proved secure by mathematical method, and we implemented a prototype system of our model and the experimental results show that it is secure.

LÜ Da-gang,LI Gong-bo,SONG Yan

DOI: https://doi.org/10.6052/j.issn.1000-4750.2021.05.S015

2022-01-01

Abstract:As one of efficient surrogate models, the support vector machine (SVM), which is based on the principle of structural risk minimization in statistical learning, has been widely used in structural reliability analysis with implicit limit state functions. However, the traditional support vector machines still have many shortcomings, such as the selection of kernel function, global basic variable space modeling, computational efficiency, etc. In order to overcome these shortcomings, this paper proposes a new support vector machine model based on moving least squares (MLS) technology named MLS-SVM. With this model, the training sample sets can be adaptive in the global basic variable space. Then this model is applied to global reliability and sensitivity analysis of reinforced concrete (RC) frame structures, and then is compared with the support vector machines based on the regenerative kernel function (RK-SVM) and the least square technique (LS-SVM). It is shown by the numerical results that, compared with the two comparative models, the MLS-SVM model has higher accuracy and better computational efficiency.

Luo Xing,Wang Wei,Shi Bole

DOI: https://doi.org/10.3969/j.issn.1000-386X.2007.02.024

2007-01-01

Abstract:In this paper,we proposed a formal security database system access model including a multilevel relation model and a element-level authorization.We extended sandhu's MLR model by giving a new explanation of how the database represents the real world.Under new semantic model,the data-borrow operation was strengthened.Further more,with the support of element-level authorization,user privilege management of database system could be more reasonable.

Lei Xia,Wei Huang,Hao Huang

DOI: https://doi.org/10.1007/978-3-540-77535-5_21

2007-01-01

Abstract:Multilevel security policies aim at only confidentiality assurance, with less consideration on integrity assurance and weakness in expressing channel control policies. Besides, the trusted subjects it introduces to handle the information flow "downgrade" have many security flaws. Moreover, increasing diversity of the computing environments results in various security requirements. However, current mainstream security models are aiming at only one or few requirements of them each. The Multi-Policy Views Security Model is presented, which is based on the MLS model, combining the domain and role attributes to the model, to enforce the expression power in channel control policies, make permission management more fine-grained and enhance the ability of confining the permission of the trusted subjects. Moreover, MPVSM has integrated the properties and functions of MLS, Domain-Type and Role Based models into one unified model. It is able to enforce multi-policy views in operating system in a flexible way.