| 分布式计算系统信息流安全 |
| |
| 引用本文: | 黄海军,陈意云.分布式计算系统信息流安全[J].小型微型计算机系统,2007,28(3):425-430. |
| |
| 作者姓名: | 黄海军 陈意云 |
| |
| 作者单位: | 1. 中国科技大学,计算机系,安徽,合肥,230026
2. 中国科技大学,计算机系,安徽,合肥,230026;中国科学院,软件研究所,计算机科学实验室,北京,100080 |
| |
| 摘 要: | 程序信息流安全是信息安全的一个重要研究方向.基于类型的静态分析可以保证程序信息流安全.鉴于分布式移动计算系统中进程之间的通讯会引起严重的信息泄密,本文研究了进程之间的通讯对系统信息流安全的影响,通过对高阶函数式编程语言进行扩充,加入通讯原语,得到分布式移动计算语言ConcurML,它能很好地模拟网络连接的动态性和代码移动性.并给出了动态语义和静态语义的形式描述,所设计的两级信息流类型系统使用类型和效果技术,结合了多态这样的类型特征,能有效地保证进程之间的通讯不会导致信息泄密.
|
| 关 键 词: | 程序信息流安全 形式语义 类型和效果系统 多态 |
| 文章编号: | 1000-1220(2007)03-0425-06 |
| 修稿时间: | 2005-12-20 |
Information Flow Security for Distribution Computation System |
| |
| HUANG Hai-jun,Chen Yi-yun.Information Flow Security for Distribution Computation System[J].Mini-micro Systems,2007,28(3):425-430. |
| |
| Authors: | HUANG Hai-jun Chen Yi-yun |
| |
| Affiliation: | 1.Department of Computer Science, University of Science and Technology of China, Hefei 230026, China;2.Laboratory of Computer Science, Institute of Software, The Chinese Academy of Sciences, Beijing 100080, China |
| |
| Abstract: | Ensuring information flow security of programs is an important research direction of information security. Type-based analyses can be used to ensure information flow security of programs. Distribution computation system involves communication, which makes ensuring security more difficult. This paper introduces a distribution language called ConcurML which combines extends functional language with constructs for transmitting and receiving values on channels across remote sites, and develops a type system exploiting type and effect systems to factor the information security analysis into two pieces. It can ensure security for communication between processes. |
| |
| Keywords: | information flow security formal semantics type and effect system polymorphism |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
