Attestation committee
Accreditation committee
Expert committee
Dispositions, instructions
Normative acts
Nomenclature
Institutions
Scientific councils
Seminars
Theses
Scientific advisers
Scientists
Doctoral students
Postdoctoral students
CNAA logo

 română | русский | english


Control of access and actions in informational systems


Author: Danilescu Marcel
Degree:doctor of physics and mathematics
Speciality: 01.05.05 - Informational systems
Year:2022
Scientific adviser: Victor Beşliu
doctor, associate professor (docent), Technical University of Moldova
Institution: Technical University of Moldova

Status

The thesis was presented on the 14 January, 2022
Approved by NCAA on the 1 March, 2022

Abstract

Adobe PDF document0.82 Mb / in romanian

Thesis

CZU 004.056(043)

Adobe PDF document 3.57 Mb / in romanian
157 pages


Keywords

Access control, action control, objects, domains, organizations, privacy, integrity, tuples, xml modeling

Summary

The thesis structure: introduction, 4 chapters, general conclusions and recommendations, bibliography with 78 titles, 5 annexes, 128 basic text pages, including 21 figures and 17 tables. The results are published in 11 papers.

The field of the investigation: Confidentiality and integrity of data and information.

The thesis aim: Modeling access control and user actions on documents in electronic format, by applying policies based on trust.

The objectives: Using trust in members of organizations, exemplifying the use of workflows in organizations to build trust-based policies, establishing conditions for interaction between object and subject based on trust policies, defining ,and creating access control policies and actions, exemplifying the use of xml technology.

Scientific novelty and originality of the results: A new method has been developed to ensure the confidentiality and integrity of data and information. For the first time, the conditions of trust that a user must meet in order to access an object and interact with it have been formalized. Examples of using xml documents have been created. The scientific problem solved: A method of enforcing user trust has been created, to access data and information from the organization's IT systems and model the IT processes that act on them.

The theoretical importance: New paradigms (levels and values of trust) have been created, and the conditions for the implementation of trust policies have been formalized. Models have been created for the application of access control policies and the interaction between the subject (user) and the object, and the basis for further research in the field of access control, data integrity and confidentiality has been laid.

The applied value of the thesis: For the first time, new models have been generated based on trust in the subject, that allow refining and simplifying the control of access, confidentiality, and integrity of data as well as their design and implementation methods.

The implementation: The results of the scientific research were implemented within the PNCD-Romania project, for the Development Research Institute for Aquatic Ecology, Fisheries and Aquaculture - Galați (I.C.D.E.A.P.A.).