| 安全操作系统中系统分权的实现 |
| |
| 引用本文: | 金雷 林志强 茅兵 谢立. 安全操作系统中系统分权的实现[J]. 计算机科学, 2003, 30(12): 154-157 |
| |
| 作者姓名: | 金雷 林志强 茅兵 谢立 |
| |
| 作者单位: | 南京大学软件新技术国家重点实验室,南京,210093 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划),基于Linux的操作系统安全增强技术的研究与开发课题编号:2001AA144010 |
| |
| 摘 要: | In Linux management is still based on some privilege system call,and this is a great underlying threat to system. Privilege-Divided Model (PDM)comes out to solve the problem. In the model, privilege is divided into some parts ,each part or several parts can only do some special task which need privilege. So the potential threat is cut down by this mechanism. This paper gives an analysis on the idea of privilege-divided,and illuminates how to design and get privilege-divided system into reality.
|
| 关 键 词: | 安全操作系统 系统分权 Linux 访问控制系统 计算机系统 |
Impose Privilege-Divided Policy on Security-Enhanced Operation System |
| |
| JIN Lei LIN Zhi-Qiang MAO Bing XIE Li. Impose Privilege-Divided Policy on Security-Enhanced Operation System[J]. Computer Science, 2003, 30(12): 154-157 |
| |
| Authors: | JIN Lei LIN Zhi-Qiang MAO Bing XIE Li |
| |
| Abstract: | In Linux management is still based on some privilege system call,and this is a great underlying threat to system. Privilege-Divided Model (PDM) comes out to solve the problem. In the model, privilege is divided into some parts,each part or several parts can only do some special task which need privilege. So the potential threat is cut down by this mechanism. This paper gives an analysis on the idea of privilege-divided,and illuminates how to design and get privilege-divided system into reality. |
| |
| Keywords: | Privilege-divided Security Access control Operation system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机科学》浏览原始摘要信息 |
|
点击此处可从《计算机科学》下载全文 |
