Redundancy and conflict detection method for label-based data flow control policy
To address the challenge of redundancy and conflict detection in the label-based data flow control mechanism, a label description method based on atomic operations has been proposed.When the label is changed, there is unavoidable redundancy or conflict between the new label and the existing label.Ho...
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2023-10-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | https://www.infocomm-journal.com/cjnis/CN/10.11959/j.issn.2096-109x.2023074 |
| _version_ | 1797262462069768192 |
|---|---|
| author | Rongna XIE, Xiaonan FAN, Suzhe LI, Yuxin HUANG, Guozhen SHI |
| author_facet | Rongna XIE, Xiaonan FAN, Suzhe LI, Yuxin HUANG, Guozhen SHI |
| author_sort | Rongna XIE, Xiaonan FAN, Suzhe LI, Yuxin HUANG, Guozhen SHI |
| collection | DOAJ |
| description | To address the challenge of redundancy and conflict detection in the label-based data flow control mechanism, a label description method based on atomic operations has been proposed.When the label is changed, there is unavoidable redundancy or conflict between the new label and the existing label.How to carry out redundancy and conflict detection is an urgent problem in the label-based data flow control mechanism.To address the above problem, a label description method was proposed based on atomic operation.The object label was generated by the logical combination of multiple atomic tags, and the atomic tag was used to describe the minimum security requirement.The above label description method realized the simplicity and richness of label description.To enhance the detection efficiency and reduce the difficulty of redundancy and conflict detection, a method based on the correlation of sets in labels was introduced.Moreover, based on the detection results of atomic tags and their logical relationships, redundancy and conflict detection of object labels was carried out, further improving the overall detection efficiency.Redundancy and conflict detection of atomic tags was based on the relationships between the operations contained in different atomic tags.If different atomic tags contained the same operation, the detection was performed by analyzing the relationship between subject attributes, environmental attributes, and rule types in the atomic tags.On the other hand, if different atomic tags contained different operations without any relationship between them, there was no redundancy or conflict.If there was a partial order relationship between the operations in the atomic tags, the detection was performed by analyzing the partial order relationship of different operations, and the relationship between subject attribute, environment attribute, and rule types in different atomic tags.The performance of the redundancy and conflict detection algorithm proposed is analyzed theoretically and experimentally, and the influence of the number and complexity of atomic tags on the detection performance is verified through experiments. |
| first_indexed | 2024-04-24T23:57:29Z |
| format | Article |
| id | doaj.art-b79f5db74d914748a61d379364945eb9 |
| institution | Directory Open Access Journal |
| issn | 2096-109X |
| language | English |
| last_indexed | 2024-04-24T23:57:29Z |
| publishDate | 2023-10-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj.art-b79f5db74d914748a61d379364945eb92024-03-14T11:51:42ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2023-10-0195213210.11959/j.issn.2096-109x.2023074Redundancy and conflict detection method for label-based data flow control policyRongna XIE, Xiaonan FAN, Suzhe LI, Yuxin HUANG, Guozhen SHITo address the challenge of redundancy and conflict detection in the label-based data flow control mechanism, a label description method based on atomic operations has been proposed.When the label is changed, there is unavoidable redundancy or conflict between the new label and the existing label.How to carry out redundancy and conflict detection is an urgent problem in the label-based data flow control mechanism.To address the above problem, a label description method was proposed based on atomic operation.The object label was generated by the logical combination of multiple atomic tags, and the atomic tag was used to describe the minimum security requirement.The above label description method realized the simplicity and richness of label description.To enhance the detection efficiency and reduce the difficulty of redundancy and conflict detection, a method based on the correlation of sets in labels was introduced.Moreover, based on the detection results of atomic tags and their logical relationships, redundancy and conflict detection of object labels was carried out, further improving the overall detection efficiency.Redundancy and conflict detection of atomic tags was based on the relationships between the operations contained in different atomic tags.If different atomic tags contained the same operation, the detection was performed by analyzing the relationship between subject attributes, environmental attributes, and rule types in the atomic tags.On the other hand, if different atomic tags contained different operations without any relationship between them, there was no redundancy or conflict.If there was a partial order relationship between the operations in the atomic tags, the detection was performed by analyzing the partial order relationship of different operations, and the relationship between subject attribute, environment attribute, and rule types in different atomic tags.The performance of the redundancy and conflict detection algorithm proposed is analyzed theoretically and experimentally, and the influence of the number and complexity of atomic tags on the detection performance is verified through experiments.https://www.infocomm-journal.com/cjnis/CN/10.11959/j.issn.2096-109x.2023074labeldata flow controlatomic tagset correlationpolicy redundancy and conflict detection |
| spellingShingle | Rongna XIE, Xiaonan FAN, Suzhe LI, Yuxin HUANG, Guozhen SHI Redundancy and conflict detection method for label-based data flow control policy 网络与信息安全学报 label data flow control atomic tag set correlation policy redundancy and conflict detection |
| title | Redundancy and conflict detection method for label-based data flow control policy |
| title_full | Redundancy and conflict detection method for label-based data flow control policy |
| title_fullStr | Redundancy and conflict detection method for label-based data flow control policy |
| title_full_unstemmed | Redundancy and conflict detection method for label-based data flow control policy |
| title_short | Redundancy and conflict detection method for label-based data flow control policy |
| title_sort | redundancy and conflict detection method for label based data flow control policy |
| topic | label data flow control atomic tag set correlation policy redundancy and conflict detection |
| url | https://www.infocomm-journal.com/cjnis/CN/10.11959/j.issn.2096-109x.2023074 |
| work_keys_str_mv | AT rongnaxiexiaonanfansuzheliyuxinhuangguozhenshi redundancyandconflictdetectionmethodforlabelbaseddataflowcontrolpolicy |