| 策略灵活安全系统的设计与实现 |
| |
| 引用本文: | 訾小超,茅兵,曾庆凯,谢立.策略灵活安全系统的设计与实现[J].计算机研究与发展,2004,41(2):299-305. |
| |
| 作者姓名: | 訾小超 茅兵 曾庆凯 谢立 |
| |
| 作者单位: | 南京大学计算机科学与技术系,南京,210093;南京大学计算机软件新技术国家重点实验室,南京,210093 |
| |
| 基金项目: | 国家“八六三”高技术研究发展计划基金项目 ( 2 0 0 1AA14 40 10 ) |
| |
| 摘 要: | 安全需求多样化对操作系统提出策略灵活性要求,传统操作系统把对安全策略的支持分散到系统相关功能模块中,如文件系统及进程通信等,难以满足这种需求,该文通过对操作系统中策略相关功能部件的分析,提出了一种策略灵活的安全体系结构,并在Linux基础上实现该结构。同以往研究相比,该结构通过对安全属性的统一维护简化了策略冲突协调的复杂性,既方便用户灵活配置已有安全策略,又支持用户针对本领域的安全需求引入新的安全属性及添加新型安全策略。
|
| 关 键 词: | 信息安全 策略灵活 多安全策略 安全操作系统 |
Design and Implementation on a Policy-Flexible System |
| |
| ZI Xiao-Chao,MAO Bing,ZENG Qing-Kai,and XIE Li.Design and Implementation on a Policy-Flexible System[J].Journal of Computer Research and Development,2004,41(2):299-305. |
| |
| Authors: | ZI Xiao-Chao MAO Bing ZENG Qing-Kai and XIE Li |
| |
| Abstract: | Security requirements' diversity demands the flexibility and scalability of security policy, but traditional operating systems implement security policies in many components so that it is difficult to meet the needs. A policy-flexible system framework is brought forward through the analysis of all the facilities related to security policy in the system, and this framework is implemented based on Linux. Compared with the previous researches, the framework simplifies policies conflict mediating by centralized management of security attributes. So this framework can support users in configuring security policies flexibly, and add new security policies based on new security attributes according to security requirements in their fields. |
| |
| Keywords: | information security policy-flexible multi-policies secure operating system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
