THOMAS Julien¹, CUPPENS-BOULAHIA Nora¹, CUPPENS Frédéric¹

Communication dans une conférence à comité de lecture

SITIS'09 : 5th International Conference on Signal-Image Technology & Internet-based Systems, 29 november - 04 december 2009, Marrakech, Morocco, 2009

2009

In existing systems, information are protected by security models that control the accesses to the information, depending on their security level.
In such systems, allowing accesses that were previously denied by diminishing the security level of the information is called downgrading. Controlling this downgrade of sensitive information is an important issue in computer security, as it requires the definition of formal security models able to express contextual authorisations for some information flows. In traditional security models, information downgrading is however most of the time not taken into account and must be managed by external systems. In some recent security models, information downgrading is defined, but for specific security policies, which limits the downgrading controls. In order to be able to express a generic information downgrading control, we present in this article a formalization of the different concepts of downgrading and we propose a model to specify and control downgrad operations. Contrary to existing downgrading models, our model relies on an abstract security policy in order to define downgrading controls that are not restricted to specific scenarios.

1 : LUSSI - Dépt. Logique des Usages, Sciences Sociales et de l'Information (Institut Télécom-Télécom Bretagne)

Security model, B method, Downgrading

8703