Colored Petri Nets Based Modeling of Information Flow Security

2009 Second International Workshop on Knowledge Discovery and Data Mining Pub Date : 2009-01-23 DOI:10.1109/WKDD.2009.171

Weiguo Li, Ruoyu Wu, He Huang

{"title":"Colored Petri Nets Based Modeling of Information Flow Security","authors":"Weiguo Li, Ruoyu Wu, He Huang","doi":"10.1109/WKDD.2009.171","DOIUrl":null,"url":null,"abstract":"Currently, with the popularization of the computer and Internet technologies, electronic documents have become the most important resource in enterprises or organizations. The security of documents and protecting the information resident in these documents is of paramount importance to the organization’s progress and in some cases, their survival too. Hence, electronic documents are the target of the insider abuse and attacker. Traditionally, methods of document access control protect the information of documents by setting accessing privileges. However, the weaknesses of this are the coarse granularity of control and lack of capability to adjust dramatically to adapt well to different operating context. In this paper, an information flaw security model based on colored Petri nets (CPN) is introduced, which analyze information flow dynamically and then find out the potential approaches that lead to the leak of information by examining the reachability graph of the CPN model. Consequently, we can take some measures to prevent information leaks and achieve the goal of protecting confidential information.","PeriodicalId":143250,"journal":{"name":"2009 Second International Workshop on Knowledge Discovery and Data Mining","volume":"44 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-01-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 Second International Workshop on Knowledge Discovery and Data Mining","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WKDD.2009.171","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

Currently, with the popularization of the computer and Internet technologies, electronic documents have become the most important resource in enterprises or organizations. The security of documents and protecting the information resident in these documents is of paramount importance to the organization’s progress and in some cases, their survival too. Hence, electronic documents are the target of the insider abuse and attacker. Traditionally, methods of document access control protect the information of documents by setting accessing privileges. However, the weaknesses of this are the coarse granularity of control and lack of capability to adjust dramatically to adapt well to different operating context. In this paper, an information flaw security model based on colored Petri nets (CPN) is introduced, which analyze information flow dynamically and then find out the potential approaches that lead to the leak of information by examining the reachability graph of the CPN model. Consequently, we can take some measures to prevent information leaks and achieve the goal of protecting confidential information.

查看原文本刊更多论文

基于彩色Petri网的信息流安全建模

当前，随着计算机和互联网技术的普及，电子文档已经成为企业或组织中最重要的资源。文件的安全性和保护驻留在这些文件中的信息对组织的发展至关重要，在某些情况下，对组织的生存也至关重要。因此，电子文档是内部滥用和攻击者的目标。传统的文档访问控制方法是通过设置访问权限来保护文档信息。然而，这种方法的缺点是控制粒度较粗，并且缺乏显著调整以适应不同操作环境的能力。本文提出了一种基于彩色Petri网(CPN)的信息漏洞安全模型，该模型对信息流进行动态分析，并通过检查CPN模型的可达性图，找出可能导致信息泄露的途径。因此，我们可以采取一些措施来防止信息泄露，达到保护机密信息的目的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2009 Second International Workshop on Knowledge Discovery and Data Mining

自引率

0.00%

发文量