| 面向信息流的安全模型与评估综述 |
| |
| 引用本文: | 郭云川,殷丽华.面向信息流的安全模型与评估综述[J].软件,2012(1):1-4. |
| |
| 作者姓名: | 郭云川 殷丽华 |
| |
| 作者单位: | 中国科学院计算技术研究所 |
| |
| 基金项目: | 国家自然科学基金项目(61100186) |
| |
| 摘 要: | 对系统进行攻击的本质之一是在信息流动过程中的非授权泄露与修改,进而破坏系统的安全性,这使得非常有必要对信息流的安全进行分析。从安全保障目标和安全保障方式上对安全信息流模型进行了分类,综述了不同类型的信息流模型研究现状,分析了现有面向信息流的量化评估方法,展望了面向信息流安全评估的发展趋势。
|
| 关 键 词: | 信息流 机密性 完整性 量化评估 |
Review of Modeling and Evaluating Secure Information Flow |
| |
| GUO Yun-chuan,YIN Li-hua.Review of Modeling and Evaluating Secure Information Flow[J].Software,2012(1):1-4. |
| |
| Authors: | GUO Yun-chuan YIN Li-hua |
| |
| Affiliation: | (Institute of Computing Technology,Chinese Academy of Sciences,Beijing,100190,China) |
| |
| Abstract: | One critical characteristics of attacking information systems is to illegally leak and modify information during information flows.So it is necessary to analyze the security of information flow.In this paper,secure information flow are reviewed.First,a classification of secure information flows is presented.Then each class is illustrated in detail,and its evaluation is summarized.Finally the future research topics are discussed. |
| |
| Keywords: | Information flow confidentiality integrity quantitative evaluation |
| 本文献已被 CNKI 等数据库收录! |
|
