A role-based security information flow model in grid environment

Yihe Liu¹, Shuang Zhang^{1, 2}, Yuping Qin² 

¹College of computer science, Neijiang Normal University, Neijiang, 641000, China

²The engineering & technical college of Chengdu university of technology, Leshan, 614000, China

Security is an important component of a grid, and it directly affects the development of the grid and the practical application of the grid system software. According to the practical application problem (namely realization of the role-based management) in the role management occurring in the information application system of my school, a role-based security information flow model is proposed from the point of view of guaranteeing the information security. In this paper, the object concept in the general network environment is expended, and the organization security classification of an object and relation between the security classification and the role set are used to classify the security and define the strategy for information flow, finally a security information flow model based on the grid environment is presented. The safe classify of the object is divided by the related information of role set, the organization security classifications, and classifications etc. At the same time, the information flow role is described. A new secure information flow model based on rules and grid environment is described using these methods. It is proven from strict mathematical justification that the new model satisfies properties of the finite lattice and least upper bound operator, and it is reasonable and safe. Furthermore, it is an extension of the BLP model and the role-based information flow model as well as extension of the security information flow model in the general network environment. Therefore, it is significant to the study of grid security.