A Formal Policy Oriented Access Control Model for Secure Enterprise Network Environment
Source: Punjabi University
This paper uses Security Evaluation Criteria as basis to develop the Network access control model for enterprise wide network computing environment. The Network access control model addresses both the access control and information flow control requirements of the enterprise network system. The security architecture of the model attempts to ensure authorized access to network resources and secure flow of information between network entities. The underlying concept of the Network access control model relies on the separation of the access control mechanism from the access control policy. This enables support for multiple access control policies within a single model specification. A further advantage of Network Access control model is that it is highly extensible, since it can be augmented with any new policy that a specific application or a user may require.