Supervising Srcure Communications for Level-Based Hierarchy

Abstract

Following the Bell-Lapadula access access control model, it is only allowed that two users with the same security level in the hierarchy can communicate secretly with each other. Meanwhile, if it is necessary for security and law enforcement considerations, the contents of the secure communications between any two communicating users can be supervised (or eavesdropped) by the users wiht higher security level. Based on the usage of the tamperproof hardware and one-way hash function, we proposed a novel scheme to resolve hash function, we proposed a novels scheme to resolve the supervising problem stated above. By the proposed scheme, a session key shared by two users can be quickly established for secure communications. Also, this session key can be easily derived by the users with higher security level, and hence the supervising requirements can be achieved.