| 带敏感标签的SELinux安全策略信息流分析方法 |
| |
| 引用本文: | 张阳.带敏感标签的SELinux安全策略信息流分析方法[J].计算机学报,2009,32(4). |
| |
| 作者姓名: | 张阳 |
| |
| 作者单位: | 中国科学院软件研究所信息安全国家重点实验室,北京,100190 |
| |
| 基金项目: | 国家八六三高技术研究发展计划项目 |
| |
| 摘 要: | 针对SELinux操作系统中多安全策略的实现方式,文中在信息流分析方法的基础上引入了多级安全敏感标签,以自动机与线性时态逻辑为理论基础,提出了一种改进的信息流分析方法,对SELinux安全策略的完整性与机密性进行验证.
|
| 关 键 词: | 安全操作系统 安全策略 信息流 有限状态自动机 |
A Information-Flow-Based Verification Solution with Security Sensitivity to Check Security Policy of SELinux |
| |
| ZHANG Yang.A Information-Flow-Based Verification Solution with Security Sensitivity to Check Security Policy of SELinux[J].Chinese Journal of Computers,2009,32(4). |
| |
| Authors: | ZHANG Yang |
| |
| Affiliation: | State Key Laboratory of Information Security;Institute of Software;Chinese Academy of Sciences;Beijing 100190 |
| |
| Abstract: | According to the implementation of multi-policy in SELinux,the authors introduce the multi-level sensitivity label into the traditional information flow analysis.On the basis of automata and linear temporal logic,an improved information flow analysis is proposed.It can verify both the integrity and confidentiality of the SELinux policies. |
| |
| Keywords: | SELinux |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
