Journal of East China Normal University(Natural Sc ›› 2015, Vol. 2015 ›› Issue (1): 172-177.doi: 10.3969/j.issn.1000-5641.2015.01.021

• Article • Previous Articles     Next Articles

A quantitative analysis technique for multi-classes access control model based on security entropy

 CHE  Tian-Wei1, MA  Jian-Feng1, WANG  Chao2, LI  Na3   

  • Received:2014-08-01 Online:2015-01-25 Published:2015-03-29

PDF

1330

Abstract: To resolve the problem of quantitative analysis on classificatory information systems, a quantitative analysis technique is proposed based on security entropy. Firstly, the security entropy is put forward according to the information theory, to calculate the uncertainty of the system's determinations on the
irregular access behaviors. Then the security theorems of classificatory information systems are defined based on security entropy. Finally, the typical access control models are analyzed by the technique, the technique's practicability is validated, and security and applicability of these models are compared. The result proves that the technique is suit for security quantitative analysis on access control model and evaluation to access control capability in information system

Key words: information entropy, security entropy, classificatory access control model, directly unauthorized access, right about access

CLC Number: