Protecting Confidentiality against Trojan Horse Programs in Discretionary Access Control System | SpringerLink
Skip to main content
Springer Nature Link
Log in

Protecting Confidentiality against Trojan Horse Programs in Discretionary Access Control System

  • Conference paper
Information Security and Privacy (ACISP 2000)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 1841))

Included in the following conference series:

  • 539 Accesses

Abstract

Mandatory access control systems (MAC ) are often criticised for their lack of flexibility, but they protect a system’s confidentiality from a wide range of untrustworthy Trojan Horse programs. On the other hand, discretionary access control systems (DAC ) place no restriction on flexibility. But, at present, they are generally regarded as inherently defenceless against all kinds of untrustworthy programs. We believe that this trade-off is not unavoidable. We show that, for lack of distinction between a user’s and a program’s trustworthiness, the vulnerability of DAC is design-based. On these grounds we present a modified (DAC ). The central idea is the separation of the management of rights from other activities of a user. The resulting system offers the flexibility of (DAC ) and the protection of (MAC ).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
¥17,985 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
JPY 3498
Price includes VAT (Japan)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
JPY 5719
Price includes VAT (Japan)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
JPY 7149
Price includes VAT (Japan)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Bell, D.E., La Padula, L.J.: Secure computer system: Unified exposition and multics interpretation. MITRE Technical Report 2997. MITRE Corp, Bedford, MA (1975)

    Google Scholar 

  2. Castano, S., Fugini, M., Martella, G., Samarati, P.: Database Security. Addison-Wesley, Wokingham (1994)

    Google Scholar 

  3. Conway, R.W., Maxwell, W.L., Morgan, H.L.: On the Implementation of Security Measures in Information Systems. CACM 15(4), 211–220 (1972)

    Google Scholar 

  4. Feiertag, R.J., Levitt, K.N., Robinson, L.: Proving multilevel security of a system design. In: 6th ACM Symposium on Operating System Principles. ACM SIGOPS Operating System Review, vol. 11(5), pp. 57–65 (1977)

    Google Scholar 

  5. Graham, R.M.: Protection in an Information Processing Utility. CACM 11(5), 365–369 (1968)

    Google Scholar 

  6. Hoffman, L.J.: Computers and Privacy: A Survey. ACM CS 1(2), 85–103 (1969)

    Article  Google Scholar 

  7. Landwehr, C.E.: Formal Models for Computer Security. ACMCS 13(3), 247–278 (1981)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science III, University of Bonn, Roemerstrasse 164, D-53117, Bonn, Germany

    Adrian Spalka, Armin B. Cremers & Hartmut Lehmler

Authors
  1. Adrian Spalka
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Armin B. Cremers
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Hartmut Lehmler
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Information Security Research Centre, Queensland University of Technology, GPO Box 2434, 4000, Brisbane, Queensland, Australia

    E. P. Dawson , A. Clark  & Colin Boyd ,  & 

Rights and permissions

Reprints and permissions

Copyright information

© 2000 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Spalka, A., Cremers, A.B., Lehmler, H. (2000). Protecting Confidentiality against Trojan Horse Programs in Discretionary Access Control System. In: Dawson, E.P., Clark, A., Boyd, C. (eds) Information Security and Privacy. ACISP 2000. Lecture Notes in Computer Science, vol 1841. Springer, Berlin, Heidelberg. https://doi.org/10.1007/10718964_1

Download citation

  • DOI: https://doi.org/10.1007/10718964_1

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-67742-0

  • Online ISBN: 978-3-540-45030-6

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics