| 安全操作系统审计的设计与实现 |
| |
| 引用本文: | 刘海峰,卿斯汉,刘文清.安全操作系统审计的设计与实现[J].计算机研究与发展,2001,38(10):1262-1268. |
| |
| 作者姓名: | 刘海峰 卿斯汉 刘文清 |
| |
| 作者单位: | 中国科学院信息安全技术工程研究中心 |
| |
| 基金项目: | 国家自然科学基金项目 ( 60 0 830 0 7),国家“九七三”重点基础研究发展规划项目 ( G19990 35 810 )资助 |
| |
| 摘 要: | 审计子系统作为安全操作系统的一个重要组成部分,对于监督系统的正常运行、保障安全策略的正确实施、构造计算机入侵检测系统等都具有十分重要的意义。给出了一个基于Linux资源,拥有自主版权,符合GB17859-1999第三级“安全标记保护级”的审计子系统的设计和实现。在此审计系统中,通过在核内及应用程序中设置审计点,以全面地收集数据;通过在主体和客体两方面设置审计标准,使审计标准的配置更加灵活、全面;通过优化缓冲区的管理,提高了整个子系统的效率。
|
| 关 键 词: | 安全操作系统 审计 Linux 内核 计算机 |
DESIGN AND REALIZATION OF AUDITING IN SECURE OS |
| |
| LIU Hai-Feng,QING Si-Han,and LIU Weng-Qing.DESIGN AND REALIZATION OF AUDITING IN SECURE OS[J].Journal of Computer Research and Development,2001,38(10):1262-1268. |
| |
| Authors: | LIU Hai-Feng QING Si-Han and LIU Weng-Qing |
| |
| Abstract: | As a very important component of secure operation system, audit subsystem plays a key role in monitoring the system, insuring proper implementing of security policy, and building intrusion detection system. The design and realization of an audit subsystem are presented, which is Linux based and copyrighted, and accords with the third level, "Security Label Protection", GB17859 1999. This audit subsystem can collect data all around by mounting audit points in the kernel and applications, make configuration more flexible by configuring audit mask in subjects and objects and enhance the subsystem's performance by optimizing buffer management. |
| |
| Keywords: | secure operating system audit audit trail Linux |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
