| 安全操作系统中基于安全性损害分析的可信恢复 |
| |
| 引用本文: | 李松林,袁春阳,朱继峰,淮晓永,梁洪亮,贺也平.安全操作系统中基于安全性损害分析的可信恢复[J].计算机科学,2007,34(2):264-266. |
| |
| 作者姓名: | 李松林 袁春阳 朱继峰 淮晓永 梁洪亮 贺也平 |
| |
| 作者单位: | 中国科学院软件研究所,北京,100080;中国科学院软件研究所,北京,100080;中国科学院软件研究所,北京,100080;中国科学院软件研究所,北京,100080;中国科学院软件研究所,北京,100080;中国科学院软件研究所,北京,100080 |
| |
| 基金项目: | 国家科技攻关计划
,
中国科学院研究生创新资金
,
发改委项目 |
| |
| 摘 要: | 安全操作系统可能因为内部或外部的原因发生失效或中断,进而导致其安全性损害。本文首先描述了一个通用的安全模型,然后扩展此模型以描述安全操作系统中的安全性损害,并提出依据安全策略从安全审计日志中分析计算安全性损害的方法,最后给出了安全性损害相应的可信恢复算法。在消极的安全防御外,本文的研究主动保证安全操作系统的安全性,增强了安全操作系统的可靠性和可恢复性。
|
| 关 键 词: | 安全性损害 可信恢复 机密性 完整性 安全操作系统 |
Trusted Recovery Based on Security Compromises Analysis in Secure Operating System |
| |
| LI Song-Lin,YUAN Chun-Yang,ZHU Ji-Feng,HUAI Xiao-Yong,LIANG Hong-Liang,HE Ye-Ping.Trusted Recovery Based on Security Compromises Analysis in Secure Operating System[J].Computer Science,2007,34(2):264-266. |
| |
| Authors: | LI Song-Lin YUAN Chun-Yang ZHU Ji-Feng HUAI Xiao-Yong LIANG Hong-Liang HE Ye-Ping |
| |
| Affiliation: | Institute of Software, Chinese Academy of Seience, Beijing 100080 |
| |
| Abstract: | Failures or discontinuities in secure operating systems may be inevitable because of internal or external reasons, and then security compromises. First, a common security model is given out in this paper. Then it is extended to in clude security compromises. And it is suggested to detect security compromises by analyzing security audit log. At last, trusted recovery algorithms is argued how to guarantee security in secure operating systems. Aparting from passire defenses, works in this paper guarantee security forwardly, and promote reliability and recoverability of secure operating systems. |
| |
| Keywords: | Security compromise Trusted recovery Confidentiality Integrity Secure operating system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
|
