The author of this document has limited its availability to on-campus or logged-in CSUSB users only.

Off-campus CSUSB users: To download restricted items, please log in to our proxy server with your MyCoyote username and password.

Date of Award

6-2020

Document Type

Restricted Project: Campus only access

Degree Name

Master of Science in Information Systems and Technology

Department

Information and Decision Sciences

First Reader/Committee Chair

Son, Joon

Abstract

This project implements an Multi-Level Security (MLS) lattice model framework based on a graph database by creating and testing the the Bell-LaPadula access control environment within it. The graph database (Neo4j) is used as a tool to implement MLS policy by leveraging Bell-LaPadula security principles and the MLS lattice model. After verifying that the MLS lattice model is correctly expressed in the graph database, a formal framework in which Bell-LaPadula security principles is applied to track the information flow within a single domain. Finally, we extend and enhance the formal framework so that a MLS security access control policy can be specified for the MLS multi-domain environment. With the new enhanced model, we are able to perform a query to verify if the subject in one domain can access to the object in another domain while the two domains are connected through a trust relationship.

Share

COinS