Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
ACSAC
2000
IEEE
2000
IEEE
History-based Distributed Filtering - A Tagging Approach to Network-Level Access Control
This contribution discusses a network-level access control technique that applies the non-discretionary access control model to individual data packets that are exchanged between hosts or subnets. The proposed technique examines incoming data’s integrity properties to prevent applications within a node or subnetwork from so called subversive channels. It checks outgoing data’s secrecy requirements before transmission. Security labels are used to identify data packets as members of different categories and security levels. Additional tags store context information to validate the trustworthiness of a packet’s content. Labels and tags of a data packet reflect events that may be relevant to access control throughout its life. As opposed to stateful filtering, which is based on the history of a flow of packets, our approach works on the history of an individual packet. Any state information is part of the packet rather than stored in all the nodes inspecting the packet; i.e. nodes d...
Real-time Traffic| Added | 30 Jul 2010 |
| Updated | 30 Jul 2010 |
| Type | Conference |
| Year | 2000 |
| Where | ACSAC |
| Authors | Reiner Sailer, M. Kabatnik |
Comments (0)
Researcher Info
|
