Policy Enforcement by Using Security Labels

Abstract

An alternative to associating policy-specific guards with operations is to associate policy-specific security labels with values. A label would specify how the tagged information may and may not be used. This project investigated the feasibility of this alternative approach by developing reactive information flow (RIF) labels and exploring both static and dynamic means of enforcement of security policies the labels specify.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 29, 2019
Accession Number
AD1097130

Entities

People

  • Fred B. Schneider

Organizations

  • Cornell University

Tags

Communities of Interest

  • Cyber
  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Abstracts
  • Air Force
  • Air Force Research Laboratories
  • Automata
  • Classification
  • Computer Programming
  • Computer Science
  • Computers
  • Contracts
  • Cybersecurity
  • Flow
  • Health Care
  • Hypervelocity Flow
  • Instructions
  • Language
  • Law
  • Security

Fields of Study

  • Computer science

Readers

  • Computational Linguistics
  • Political Violence and Terrorism Studies.
  • Systems Analysis and Design