| 安全操作系统的设计 |
| |
| 引用本文: | 毛韡锋,平玲娣,姜励,陈小平.安全操作系统的设计[J].计算机工程,2006,32(12):179-181,246. |
| |
| 作者姓名: | 毛韡锋 平玲娣 姜励 陈小平 |
| |
| 作者单位: | 浙江大学计算机科学与技术学院,杭州,310027 |
| |
| 基金项目: | 科技部科技型中小企业技术创新项目;浙江省创新项目 |
| |
| 摘 要: | SECOS是一个自主产权的安全操作系统,符合国家4级标准。该文总结了SECOS设计过程中的关键技术,包括:安全增强,改进设计方法,在Bell-La Padula强制访问模型基础上修改建立的理论模型及其实现,系统开发过程形式化设计,隐蔽信道分析方法及防范措施,客体重用等。安全系统性能估算测试表明SECOS的设计和实现是成功的。
|
| 关 键 词: | 安全操作系统 强制访问控制 BLP模型 隐蔽信道 客体重用 |
| 文章编号: | 1000-3428(2006)12-0179-03 |
| 收稿时间: | 2005-09-28 |
| 修稿时间: | 2005-09-28 |
Design of Secure Operating System |
| |
| MAO Weifeng,PING Lingdi,JIANG Li,CHEN Xiaoping.Design of Secure Operating System[J].Computer Engineering,2006,32(12):179-181,246. |
| |
| Authors: | MAO Weifeng PING Lingdi JIANG Li CHEN Xiaoping |
| |
| Affiliation: | College of Computer Science and Techonology, Zhejiang University, Hangzhou 310027 |
| |
| Abstract: | SECOS is a secure operating system with independent intellectual property right,which accords with the requirements of level 4 secure operation system technology.This paper illustrates some key issues of the system,including design method for enchancement of security,improved model from the Bell-La Padula MAC(mandatory access control) implementation,the realization of the model,formal method during the system development,conversiion channel analysis and its prevention,and secure deletion.The performance evaluation shows the design and implementation of SECOS is effective. |
| |
| Keywords: | SECOS MAC BLP Convert Channel Secure deletion |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
