Skip to main content
SpringerLink
Log in

A Novel Policy and Information Flow Security Model for Active Network

  • Conference paper
Book cover Intelligence and Security Informatics (ISI 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3073))

Included in the following conference series:

Abstract

In this paper, we describe the active network security model from access control and information flow model. We present an access control policy called family tree policy for active network. The family tree policy can correctly represent active network that cannot be correctly modeled by BLP and Chinese wall model. At the same time, we further research the information flow security properties of active network and present the novel methods to research the information flow based on inheriting classes. The properties of information flow are described by properties of the inheriting class inner flow and flow among the different inheriting classes. Research For the inheriting class flow, the classic information flow model can be used. For the flow among the inheriting classes, we present a novel method to research it based on the conception of timestamp and flow.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Tennenhouse, D., Wetherall, D.: Towards an Active Network Architecture. In: Multimedia Computing and Networking, San Jose, CA (1996)

    Google Scholar 

  2. Wetherall, D., John, V., et al.: ANTS: A Toolkit for Building and Dynamically Deploying Network Protocols. In: IEEE OPENARCH 1998, San Francisco, CA (April 1998)

    Google Scholar 

  3. http://www.choices.cs.uiuc.edu/Security/seraphim/May2000/SecurityArchitecture.pdf a6AN Security working group (May 2000)

  4. Campbell, R.H., Liu, Z.: Dynamic interoperable security architecture for active network. In: IEEE OPENARCH 2000, Israel, March 2000, pp. 32–41 (2000)

    Google Scholar 

  5. Calvert, K.L.: Architectural framework for active networks, version 1.0 University of Kentucky (July 1999), http://www.ccgatech.edu/project/canes/papers/arch-1-0.ps.gz

  6. Bell, D.E., LaPadula, L.J.: Secure computer systems: Mathematical foundations. Technical Report ESD-TR-278, vol. 1, The Mitre Corp., Bedford, MA (1973)

    Google Scholar 

  7. Bell, D.E.: Secure computer systems: A re.nement of the mathematical model.Technical Report ESD-TR-278, vol. 3, The Mitre Corp., Bedford, MA (1973)

    Google Scholar 

  8. Brewer, D.F.C., Nash, M.J.: The Chinese wall security policy. In: Proc. IEEE Symposium on Security and Privacy, Oakland, CA, pp. 215–228 (1989)

    Google Scholar 

  9. Goguen, A., Meseguer, J.: Security policies and security models. In: Proc. of the 1982 Symposium on Security and Privacy, pp. 11–20 (1982)

    Google Scholar 

  10. Focardi, R., Gorrieri, R.: A Classification of Security Properties. JCS 3(1), 5–33 (1995)

    Google Scholar 

  11. Focardi, R., Gorrieri, R.: The Compositional Security Checker: A Tool for the Verification of Information Flow Security Properties. IEEE Trans. on Soft. Eng. 23(9), 550–571 (1997)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of computer, NanJing University of Aeronautics and Astronautics, China

    Zhengyou Xia

  2. Department of Computer information & technology, Fudan University, China

    Yichuan Jiang, Yiping Zhong & Shiyong Zhang

Authors
  1. Zhengyou Xia
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yichuan Jiang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yiping Zhong
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Shiyong Zhang
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Management Information Systems, Eller College of Management,, The University of Arizona, AZ 85721, USA

    Hsinchun Chen

  2. San Diego Supercomputer Center, 9500 Gilman Drive, CA 92093-0505, La Jolla, USA

    Reagan Moore

  3. MIS Department, University of Arizona, AZ 85721, Tucson, USA

    Daniel D. Zeng

  4. Tucson Police Department, 270 S. Stone Avenue, AZ 85701, Tucson, USA

    John Leavitt

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Xia, Z., Jiang, Y., Zhong, Y., Zhang, S. (2004). A Novel Policy and Information Flow Security Model for Active Network. In: Chen, H., Moore, R., Zeng, D.D., Leavitt, J. (eds) Intelligence and Security Informatics. ISI 2004. Lecture Notes in Computer Science, vol 3073. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-25952-7_4

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-25952-7_4

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22125-8

  • Online ISBN: 978-3-540-25952-7

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation