about modeling of mic and mac in postgresql within framework of the mrosl dp-model | Applied Discrete Mathematics. Supplement. 2019. № 12. DOI: 10.17223/2226308X/12/45

about modeling of mic and mac in postgresql within framework of the mrosl dp-model

It is an urgent task to use complex software programs in the OS Astra Linux. Especially when these software programs implement their own access control. Firstly, an appropriate technical implementation is required for interfacing access control in software with OS Astra Linux mandatory integrity control (MIC) and mandatory access control (MAC). Secondly, it is important to ensure confidence in the security of such combination of access control of software programs and the OS Astra Linux. This is also necessary to ensure the safety of informational flows by memory or by time. The important example of such regular of the OS Astra Linux software program is PostgreSQL with initially implemented role-based access control (RBAC). Recently, certification of the OS Astra Linux was held on demand of the protection profile of general-purpose OS of the first (highest) protection class. The mandatory entity-role DP-model (MROSL DP-model) was developed and was verified in the course of the certification. This model is the scientific basis for the development of OS Astra Linux access control. This says about the feasibility of preparing to meet similar requirements with respect to PostgreSQL. In this regard, the results of the completion of the formation MIC, MAC and RBAC for PostgreSQL within framework of hierarchical representation of the MROSL DP-model are considered in the article. It is said about introducing changes in the levels for the OS Astra Linux and also about additions to sufficient conditions of security of access control.

Download file

Counter downloads: 249

Keywords

компьютерная безопасность, формальная модель, управление доступом, PostgreSQL, computer security, formal model, access control, PostgreSQL

Authors

Name	Organization	E-mail
Devyanin P. N.	Cryptography Academy of the Russian Federation; JSC NPO RusBITech	devyanin.peter@yandex.ru

Всего: 1

References

ФСТЭК России. Информационное сообщение от 29 марта 2019 г. №240/24/1525. https: //fstec.ru/component/attachments/download/2286.

Astra Linux - универсальная операционная система. http://www.astralinux.ru.

Astra Linux. https://ru.wikipedia.org/wiki/Astra_Linux.

Родина в кибербезопасности: российской ОС откроют все секреты. https://iz.ru/ 871218/olga-kolentcova/rodina-v-kiberbezopasnosti-rossiiskoi-os-otkroiut-vse-sekrety/.

Буренин П. В., Девянин П. Н., Лебеденко Е. В. и др. Безопасность операционной системы специального назначения Astra Linux Special Edition: учеб. пособие для вузов. / под ред. П. Н. Девянина. 3-е изд., перераб. и доп. М.: Горячая линия-Телеком, 2019. 404с.

Девянин П. Н., Кулямин В. В., Петренко А. К. и др. Моделирование и верификация политик безопасности управления доступом в операционных системах. М.: Горячая линия-Телеком, 2019. 214 с.

Девянин П. Н. Подходы к моделированию управления доступом в СУБД PostgreSQL в рамках МРОСЛ ДП-модели // Прикладная дискретная математика. Приложение. 2018. №11. С. 95-98.