Conference paper Open Access

An approach to Separation of Duties validation for MILS security configurations

Kort, Semen; Kulagin, Dimitry; Rudina, Ekaterina

Citation Style Language JSON Export

  "publisher": "Zenodo", 
  "DOI": "10.5281/zenodo.571156", 
  "title": "An approach to Separation of Duties validation for MILS security configurations", 
  "issued": {
    "date-parts": [
  "abstract": "<p>Separation of duties (SoD) is an important concept aimed to constrain the excessive powers of subjects regarding system assets and control functions. Ensuring the fact that SoD is properly implemented for the particular task may require the individual approach in every given case.<br>\nThis paper proposes an approach to SoD validation conducted by the analysis of the security configuration of MILS-based solution. The security policy based on object capabilities is considered for this purpose. For this security policy two basic issues should be met. The first issue is the enough expressivity of the security policy. It is addressed with demonstration of particular examples of usage scenarios. The second issue regards the conditions under which the security problem remains tractable. Solving this issue in context of specifically defined SoD criteria is at the core of this research.<br>\nThe approach is implemented for the security configurations of Kaspersky Security System.</p>", 
  "author": [
      "family": "Kort, Semen"
      "family": "Kulagin, Dimitry"
      "family": "Rudina, Ekaterina"
  "id": "571156", 
  "event-place": "Nuremberg, Germany", 
  "type": "paper-conference", 
  "event": "International Workshop on MILS: Architecture and Assurance for Secure Systems"
All versions This version
Views 5050
Downloads 3232
Data volume 7.9 MB7.9 MB
Unique views 4545
Unique downloads 3030


Cite as