An Access Control Mechanism to Allow High-level Policy Description
| Project/Area Number |
19300005
|
|---|
| Research Category |
Grant-in-Aid for Scientific Research (B)
|
| Allocation Type | Single-year Grants |
|---|
| Section | 一般 |
|---|
| Research Field |
Software
|
|---|
| Research Institution | University of Tsukuba |
|---|
Principal Investigator |
KATO Kazuhiko University of Tsukuba, 大学院・システム情報工学研究科, 教授 (90224493)
|
|---|
| Co-Investigator(Kenkyū-buntansha) |
SHINAGAWA Takahiro 筑波大学, 大学院・システム情報工学研究科, 講師 (40361745)
|
|---|
| Project Period (FY) |
2007 – 2009
|
| Project Status |
Completed (Fiscal Year 2009)
|
| Budget Amount *help |
¥17,810,000 (Direct Cost: ¥13,700,000、Indirect Cost: ¥4,110,000)
Fiscal Year 2009: ¥5,070,000 (Direct Cost: ¥3,900,000、Indirect Cost: ¥1,170,000)
Fiscal Year 2008: ¥5,720,000 (Direct Cost: ¥4,400,000、Indirect Cost: ¥1,320,000)
Fiscal Year 2007: ¥7,020,000 (Direct Cost: ¥5,400,000、Indirect Cost: ¥1,620,000)
|
|---|
| Keywords | セキュアOS / アクセス制御 / ポリシー記述 / オペレーティングシステム / セキュリティ / セキュリティポリシー / ファイルシステム |
|---|
| Research Abstract |
We have carried out the research on a in-kernel new access control mechanism for simplifying the process of describing security policies in operating systems. We introduced the concept of phase and class hierarchy into the policy description language and developed the protection mechanism for enforcing such policies, allowing intuitive and small description of security policies.
|
Report
(4 results)
Research Products
(7 results)
