Chao Wu,Yike Guo

DOI: https://doi.org/10.1109/bigdata.2013.6691688

2013-01-01

Abstract:Personal data collection is becoming pervasive these days, these data has the risk of being abused by current application and application marketplace model, because only the price of application is explicitly indicated without clear agreement on usage of data, and the granularity of data access authentication is not enough to protect users privacy. In this short paper, we propose a new model of user data privacy. Data usage of the application is explicitly shown, and controlled by an authentication service, to protect users from the abuse of their data, especially in mobile application.

HE Hong-jun,LUO Li,CAO Si-hua,NING Jing-xuan,LI Peng,DONG Li-ming

DOI: https://doi.org/10.3969/j.issn.1001-2486.2007.06.013

2007-01-01

Abstract:Access control is an important technique to protect computer files.Aiming at malwares that attack files,the paper proposes a quantified estimation method,and points out that the fragibility of prevalent access control policies lies in authorizing programs to access files what the user can access.The paper novelly proposes an access control policy based-on user's intention,which is able to defend unknown file attacks,and has extraordinarily less risk than prevalent access control policies.Furthermore,the paper proves security properties of the policy presented,and its application is discussed.

CAO Sihua,HE Hongjun

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.23.061

2006-01-01

Abstract:(Abstract)In the design and implementation of the current security systems based on BLP model, subject's security label and access right inherit from the user's. This may enlarge the access ability which violates the least privilege theorem and give the malious subject the chance to gain higher security label and more rights to steal and damage information. To solve this problem, the paper presents an improved BLP model based on user's intention——IB_BLP model. In the new model, subject needs to get user's intention to meet the least privilege theorem while accessing object. (Key words)Information security; BLP model; User intention

Liu Zun,Tao Wang,Li Wei-hua

DOI: https://doi.org/10.1109/ICMSS.2009.5302851

2009-01-01

Abstract:This paper analyses the integrity protect policy of secure operating system. A method to determine the integrity level of the users, processes and data was given. A way using roles to manage the integrity level of users according to their responsibilities was brought up. An integrity control model was proposed with its integrity axiom, model element, define of state system, setting of system and rules for states translation. The correctness of given model is proved.

Li-ming DONG,Hong-jun HE,Li LUO,Xiu-xiong HE

DOI: https://doi.org/10.3969/j.issn.2095-6835.2010.18.025

2009-01-01

Abstract:The main harm that computer virus and spyware do to people is stealing or modifies people's important data,nowadays protect method such as safety software and firewall etc.couldn't provide real time and full-scale protect,there always some malicious software could escape or bypass checking through disguise themselves or cheating safety software.To this question,this paper put forward a method which could provide real time protection to personal important data against malicious software.Unlike traditional protect method,this method didn't stay on software's codes and behaviors when identifying their validity;instead,this method deem user's authentication as standard,all the file access request should be authorized by user and those requests which without user 's authorization are deemed as invalidate.So even if malicious software has escaped checking,they still couldn 't get user's authorization,and then couldn't achieve its intention.The implementation of the method in Windows XP and tests indicate this method has little effect to system performance and could provide real time protection to user's data even system compromised.

WANG Zhi-qiang,HUANG Hao,XIA Lei

2007-01-01

Journal of Computer Applications

Abstract:A fine-grained protection domains method was proposed to address the problem of dynamically changing a process's capabilities. According to a process's different access mode of its address space and system resources in its different executing phases, this model partitions it into multiple protection domains. Then it sets up access mode of address space for each of them, which makes it feasible to resist code injection attacks. Meanwhile, it integrates Mandatory Access Control (MAC) framework into it to provide the access control of system resources, which meets the security requirement of the system.

DAI Wei,ZHENG Tao

DOI: https://doi.org/10.3969/j.issn.1001-3695.2012.09.074

2012-01-01

Abstract:The privacy mode in Android has some defects and is lack of effective mechanisms to prevent loss of privacy between applications.This paper proposed a new privacy protection model by using the fine-grained permissions and privacy data tainting.Firstly the method could prevent loss of privacy from a single application by dynamically configuring the permissions in a fine-grained manner.By leveraging the track of the tainted privacy data it could prohibit the propagation of the privacy data between applications which had different permissions on the accordingly privacy tag.Repeatly experimental tests show the model is able to effectively protect the privacy of data within the Android application,and to detect the privilege escalation attacks between applications so as to isolate the private data.As a result,the full range of private data within Android is in protection,and leads a new direction for related research in the future.

LI Bo,HUANG Dong-jun

DOI: https://doi.org/10.3969/j.issn.1006-8937-B.2006.04.001

2006-01-01

Abstract:The paper analyzes and compares several primary ways to distribute privileges during the current design process of access system such as Discretionary Access Control(DAC), Mandatory Access Control (MAC) and Role-Based Access Control (RBAC), points out their respective characteristics and limitations of their applicability. By taking the new characteristics of modern enterprise management into consideration and combining with the existing access control model, the authors discuss the access control technology of the multi-users information system, present and realize the security control model based on role level, department level and user level in the application. Practical application makes clear that it enhances the security and maintainability of information system.

刘尊,王涛,李伟华

DOI: https://doi.org/10.3969/j.issn.1002-137x.2010.01.020

2010-01-01

Computer Science

Abstract:Integrity is one of the security objectives of operating system.This paper analysed the integrity protection policies of security operating system,and elaborated user responsibility and process reliability are important factors in determining the integrity level of the users,the processes and the files in operating system.Then we proposed an integrity control model with detailed description of its integrity axiom,model elements,system states,system configurations and state transition rules.The model employs roles to simplify user integrity management.The correctness of given model was proven.The application case and implementation method were given at the end of the paper.

Xie Jun

2005-01-01

Abstract:Many secure operating systems have some privileged processes or trusted processes which are always at risk of being hijacked by various attacks such as the buffer overflow attack.Once they are hijacked,the security of the whole system would be damaged.In this paper,a multi-protection domains process model is described which provides fine-grained kernel level protection for codes and data within process address space.The fine-grained internal protection of process can effectively prevent attackers from hijacking the whole process by damaging the process's data or codes.This paper offers two designs for this model and a prototype implementation of one of them.

刘尊,李伟华,王涛

DOI: https://doi.org/10.3724/sp.j.1087.2009.02319

2009-01-01

Abstract:A Usable Security Protected Model(USPM)for operating system was proposed and implemented.This model provided enough security for operating system with good compatibility and less special configuration.With this model,one can keep the secret of confidential documents and protect important files from being damaged even after a successful attack.The authors used a rule that limited the activities of processes who communicated with the remote system to ensure the security of the operating system and a number of exceptions that permitted particular activities of particular process to improve the usability of the system.A set of tests show that the model is easy to use,and it has good security,lower costs and good compatibility.

Yingjie Wang,Zhihong Zhou,Jianhua Li

DOI: https://doi.org/10.1007/978-3-642-54924-3_106

2014-01-01

Abstract:Now, organizations are required to comply with existing privacy protection regulations on data collection, use, and disclosure. Privacy preservation in a data-sharing computing environment is becoming a challenging problem. The core part of privacy protection is purposes for and circumstances under which the data can be accessed. It must be ensured that data can only be used for its intended purposes, so the access purpose should be compliant with the intended purposes. In this paper, the role-based access control (RBAC) model is extended to incorporate the notion of purpose. Relationships between purposes are defined. It is investigated that how different components in the RBAC model are related to purpose and how the purpose information can be used to determine whether a subject has access to a given object. The model can suit for applications consisting of static and dynamic objects, where both access purpose and intended purpose are needed for consideration before granting access.

LIANG Jinqian,GUAN Xiaohong

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.02.009

2007-01-01

Abstract:This paper introduces an access control mechanism called PBAC(process-based access control),which models from the active process,based on the access control model of current operating system,according to the role of process,the process privilege is assigned and managed in more detail.It enhances information confidentiality,integrity and controllability,and reduces the malicious code threat to the computer system.The basic concepts of PBAC are introduced and a formalization description is given,and the implementation in the Windows platform is discussed.

Haiwei Xue,Yiqi Dai

DOI: https://doi.org/10.1504/ijcc.2012.049768

2012-01-01

International Journal of Cloud Computing

Abstract:Transparent computing system provides services, including OS, applications, data, etc., for end users, in which users can request the computing and storages resources according to their requirement. It is important to protect the data in transparent computing system, especially to enhance the privacy protection. In some cases, security threats are not only from malicious users or viruses but also include inside leaks, which cannot be prevented by current security systems. We proposed system-based privacy protection model for transparent computing systems in this paper. Our model is based from mandatory access control and we use formal methods to analysis the privacy protection problem. Our model is a state machine model, which have five state transition rules and all these rules can be proved to be safe by formally description method. So if we use these rules in transparent computing system, and make sure that the initial state is secure, the transparent computing system is always keep state secure.

Zhiyong Shan,Qiuyue Wang,Xiaofeng Meng

DOI: https://doi.org/10.1007/978-3-540-77086-2_3

2007-01-01

Abstract:Security threats to operating systems today largely come from network. Traditional discretionary access control mechanism alone can hardly defeat them. Although traditional mandatory access control models can effectively protect the security of OS, they have problems of application incompatibility and administration complexity. In this paper, we propose a new model, Suspicious-Taint-Based Access Control (STBAC) model, for defeating network attacks while maintaining good compatibility, simplicity and system performance. STBAC regards processes using Non-Trustable-Communications as starting points of suspicious taint, traces activities of the suspiciously tainted processes by taint rules, and forbids the suspiciously tainted processes to illegally access vital resources by protection rules. Even in the cases when some privileged processes are subverted, STBAC can still protect vital resources from being compromised by the intruder. We implemented the model in the Linux kernel and evaluated it through experiments. The evaluation showed that STBAC could protect vital resources effectively without significant impact on compatibility and performance.

Rui Chang,Liehui Jiang,Wenzhi Chen,Hong-qi He,Shuiqiao Yang,Hang Jiang,Wei Liu,Yong Liu

DOI: https://doi.org/10.1002/cpe.4180

2018-01-01

Abstract:This paper discusses security issues on the user equipment, which is the last mile of social networks. One of the main Achilles' heel of social networks is not the organization of networks themselves, but the user devices, typically Android ones. The existing system of privileges makes it easy to infiltrate the network via applications installed on users' devices. Conventional signature-based and static analysis methods are vulnerable. Access to privacy- and security-relevant parts of the application programming interface is controlled by the corresponding permission in a manifest file. While requesting access to permissions, it may offer opportunities to malicious codes, which will cause security issues. Few works among permission analysis, however, pay attention to the prevention of permission leakage on both hardware and software frameworks. In this paper we tackle the challenge of providing our multilayered permission-based security extension scheme on Android platforms. We propose a usage and access control model and an effective method of preventing permission leakage based on ARM TrustZone security extension mechanism. In contrast to previous work, the proposed security architecture provides a permission-based mandatory access control on Android middleware, Linux kernel, and hardware layers. The evaluation results demonstrate the effectiveness of the proposed scheme in mitigating permission leakage vulnerabilities.

Rui Chang,Liehui Jiang,Wenzhi Chen,Hongqi He,Shuiqiao Yang

DOI: https://doi.org/10.1109/cit.2016.14

2016-01-01

Abstract:As the number of smart devices continues to grow dramatically, programmes and data handled by such smart devices have become the primary targets of hackers and malwares. ARM-Android is the most widespread platform for smart devices. Access to privacy-and security-relevant parts of the API is controlled by the corresponding permission in a manifest. However, while requesting access to permissions, these applications may offer opportunities to malicious codes to gain access to other inaccessible resources which will cause a series of security issues. Recently, many researchers focus on the permission-based mechanism which restricts accesses of users and applications to critical resources on an ARM-Android device. Few works among permission analysis, however, pay attention to the prevention of permission leakage on both hardware and software frameworks. In this paper we tackle the challenge of providing our permission-based security architecture on ARM-Android platform. We propose an usage and access control model and an effective method of preventing permission leakage based on ARM TrustZone security extension. In contrast to previous work, the proposed security architecture provides a flexible mandatory access control on Android middleware, Linux kernel, and hardware layers. The evaluation results demonstrate the effectiveness in mitigating permission leakage vulnerabilities.

Aiguo Chen,Guoming Lu,Hanwen Xing,Yuan Xie,Shunwei Yuan

DOI: https://doi.org/10.1177/1550147720921778

IF: 1.938

2020-01-01

International Journal of Distributed Sensor Networks

Abstract:With the rapid development of intelligent perception and other data acquisition technologies in the Internet of things, large-scale scientific workflows have been widely used in geographically distributed multiple data centers to realize high performance in business model construction and computational processing. However, insider threats pose very significant privacy and security risks to systems. Traditional access-control models can no longer satisfy the reasonable authorization of resources in these new cross-domain environments. Therefore, a dynamic and semantic-aware access-control model is proposed for privacy preservation in multiple data center environments, which implements a semantic dynamic authorization strategy based on an anomaly assessment of users’ behavior sequences. The experimental results demonstrate that this dynamic and semantic-aware access-control model is highly dynamic and flexible and can improve the security of the application system.

韦科,范磊,李建华

DOI: https://doi.org/10.3969/j.issn.1009-8054.2008.05.026

2008-01-01

Abstract:As the last barrier to protect the user's information in computer,the file protection has become a hot topic in information security.This paper,based on analysis of the characters of file protection and the weakness of the traditional RBAC model in file protection,proposes a modified RBAC model for protection of the file in the system.Finally,an example to implement the model for a case in Windows NT operation system is given.

HE Hongjun,HE Xiuxiong,LUO Li,FANG Zhihe,WANG Yang,DUAN Zhipeng

DOI: https://doi.org/10.14188/j.1671-8836.2010.02.018

2010-01-01

Abstract:In this paper,the implementation principle of mainstream protection technology and its inadequateness are analyzed,also analyzed is the main threat source and its main attacking manner against the application program.In addition,a protective model APM for application program protection is forwarded.APM is described in detail.The argumentation on several safety characteristics of that model shows that the model is capable of giving a real-time protection against malicious attacks so that the threat upon and damage of the application program is reduced.