Joint Implementation of Mandated and Role-Based Delimitation of Access to Information Flows in Info-communication Systems
Annotatsiya
Protection of data integrity, which is granted access to subjects in the information system, is achieved due to the fact that the information system is presented as part of the formal security model of logical mandatory and role-based access and information flow management and integrity control. Based on the de jure and de facto rules, an algorithm has been developed for the implementation of mandatory and role-based access control access to check the security status of a secure information system.The main idea is to prevent the role of violating entities of the protected information system from using role parameters, including access rights of roles to entities, for implementing information flows from memory or time from entities with a high level of confidentiality to entities with a low level of confidentiality of information.