| 混合多策略视图安全模型 |
| |
| 引用本文: | 夏磊,黄皓,于淑英.混合多策略视图安全模型[J].计算机科学,2008,35(5):42-46. |
| |
| 作者姓名: | 夏磊 黄皓 于淑英 |
| |
| 作者单位: | 南京大学软件新技术国家重点实验室,计算机科学与技术系,南京,210093 |
| |
| 摘 要: | 传统的MLS策略侧重于信息机密性保护,却很少考虑完整性,也无法有效实施信道控制策略,在解决不同安全级别信息流动问题时采用的可信主体也存在安全隐患.同时,应用环境的多样性导致了安全需求的多样化,而当前的安全模型都只侧重于其中一种或几种安全需求.本文给出的混合多策略模型一MPVSM模型有机组合了BLP,Biba,DTE和RBAC等安全模型的属性和功能,消除了MLS模型的缺陷,提高了信道控制能力和权限分配的灵活度,对可信主体的权限也进行了有力的控制和约束,同时为实现多安全策略视图提供了一个框架.文中给出了MPVSM模型的描述和形式化系统,并给出了几种典型策略的配置实例.
|
| 关 键 词: | 安全模型 多安全策略 多级安全策略 最小特权 机密性保护 完整性保护 |
Hybrid Multiple Policy Views Security Model |
| |
| XIA Lei,HUANG Hao,YU Shu-ying.Hybrid Multiple Policy Views Security Model[J].Computer Science,2008,35(5):42-46. |
| |
| Authors: | XIA Lei HUANG Hao YU Shu-ying |
| |
| Affiliation: | XIA Lei HUANG Hao YU Shu-ying (State Key Laboratory for Novel Software Technology,Department of Computer Science , Technology,Nanjing University,Nanjing 210093,Chinan) |
| |
| Abstract: | MLS security policy aims at only confidentiality assurance,with less consideration on integrity assurance and weakness in channel control policy.And its way to handle the trusted subjects has many security shortcomings.Moreo- ver,increasing diversity of the computing environments results in various security requirements.However,current mainstream security models are aiming at only one or few requirements of them each.The Multi-Policy Views Security Model is presented,which is based on the MLS model,combinin... |
| |
| Keywords: | Security model Multiple security policies Multilevel security policy Least privilege Confidentiality assurance Integrity assurance |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
|
