| 基于认证可信度的BLP模型研究 |
| |
| 引用本文: | 汪伦伟,周良源,廖湘科,王怀民.基于认证可信度的BLP模型研究[J].计算机工程与应用,2004,40(25):18-19,40. |
| |
| 作者姓名: | 汪伦伟 周良源 廖湘科 王怀民 |
| |
| 作者单位: | 国防科技大学计算机学院,长沙,410073 |
| |
| 基金项目: | 国家863高技术研究发展计划项目:重大软件专项服务器操作系统内核(编号:2002AA1Z2101)资助 |
| |
| 摘 要: | 该文扩展认证可信度的相关概念,描述当前系统中认证和授权相脱节的情况下如何将两者通过认证可信度结合起来,提出认证可信度与BLP相结合的模型:基于认证可信度的BLP模型,要求主体对客体的访问必须经过可信度安全特性和BLP模型安全策略的双重判定。模型体现了实际系统对不同用户认证可信度授予不同访问权限的需要,防止通过弱认证机制获得低认证可信度的用户访问高敏感信息。
|
| 关 键 词: | 认证可信度 BLP模型 |
| 文章编号: | 1002-8331-(2004)25-0018-02 |
Research on Authentication Trustworthiness-based BLP Model |
| |
| Wang Lunwei Zhou Liangyuan Liao Xiangke Wang Huaimin.Research on Authentication Trustworthiness-based BLP Model[J].Computer Engineering and Applications,2004,40(25):18-19,40. |
| |
| Authors: | Wang Lunwei Zhou Liangyuan Liao Xiangke Wang Huaimin |
| |
| Abstract: | This paper extends the concepts of authentication trustworthiness,and describes how to combine authenti-cation and authorization with authentication trustworthiness under the condition that authentication and authorization are disjointed in current systems.This paper puts forward the authentication trustworthiness -based BLP Model,which associates the authentication trustworthiness with BLP model.The model requires that the subject who wants to access the object must be evaluated with authentication trustworthiness security property and the security policies of the BLP model.This model embodies the need of systems that different user with different authentication trustworthiness should be authorized with different rights,and can prevent the users who acquire lower authentication trustworthiness by weaker authentication mechanisms from accessing sensitive information. |
| |
| Keywords: | authentication trustworthiness BLP Model |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
