High-level Formal Modeling and Verication of Mandatory Access Control Policies Across Multiple Security-Enhanced Linux Devices
Zook, Jared Thomas. (2016). High-level Formal Modeling and Verication of Mandatory Access Control Policies Across Multiple Security-Enhanced Linux Devices. Theses and Dissertations Collection, University of Idaho Library Digital Collections. https://www.lib.uidaho.edu/digital/etd/items/zook_idaho_0089n_11022.html
- Title:
- High-level Formal Modeling and Verication of Mandatory Access Control Policies Across Multiple Security-Enhanced Linux Devices
- Author:
- Zook, Jared Thomas
- Date:
- 2016
- Embargo Remove Date:
- 2017-06-23
- Keywords:
- Cyber Security Mandatory Access Control Security-Enhanced Linux Security Policy Modeling Security Policy Querying
- Program:
- Computer Science
- Subject Category:
- Computer science
- Abstract:
-
The evolution of technological progress continually presents new information security challenges for large enterprises. Organizations must actively implement security policies to mitigate modern threats. Access control policies which define the way in which an organization's principals can interact with a system are particularly vital to enforce and verify. Accordingly, this thesis demonstrates that policies from an enterprise Linux implementation of a mandatory access control scheme can be used to populate a useful and efficient policy model. This model can be queried from a high-level to verify proper implementation of policies across one or more devices in a networked environment. It provides the user with both 1) a graphical representation of one or more policy implementations and 2) a means for an analyst to ensure whether specified actions between subjects and objects are permitted or not, aiding in providing them with an intuitive understanding of the higher-level organizational security policy.
- Description:
- masters, M.S., Computer Science -- University of Idaho - College of Graduate Studies, 2016
- Major Professor:
- Conte de Leon, Daniel
- Committee:
- Haney, Michael; Krings, Axel
- Defense Date:
- 2016
- Identifier:
- Zook_idaho_0089N_11022
- Type:
- Text
- Format Original:
- Format:
- application/pdf
- Rights:
- In Copyright - Educational Use Permitted. For more information, please contact University of Idaho Library Special Collections and Archives Department at libspec@uidaho.edu.
- Standardized Rights:
- http://rightsstatements.org/vocab/InC-EDU/1.0/