首页 | 本学科首页   官方微博 | 高级检索  
     

面向对象系统的信息流安全研究
引用本文:张原,史浩山. 面向对象系统的信息流安全研究[J]. 西北工业大学学报, 2002, 20(2): 328-332
作者姓名:张原  史浩山
作者单位:西北工业大学,电子工程系,陕西,西安,710072
摘    要:描述了面向对象系统的数据模型,研究了信息流和信息传输,并以此为基础给出了基于自主访问控制策略的分布式对象系统的信息流控制方法,该方法利用限制策略和消息过滤器算法可以在自主访问控制中实现强制访问控制中的*属性,从而有效地防止特络伊木马对自主访问控制的威胁。

关 键 词:面向对象系统 访问控制 信息流控制 特络伊木马 分布式对象系统 信息安全 网络安全 数据模型
文章编号:1000-2758(2002)02-0328-05
修稿时间:2001-02-22

On Information Flow Security in Distributed Object-Oriented System
Zhang Yuan,Shi Haoshan. On Information Flow Security in Distributed Object-Oriented System[J]. Journal of Northwestern Polytechnical University, 2002, 20(2): 328-332
Authors:Zhang Yuan  Shi Haoshan
Abstract:To keep independent object-oriented system secure from Trojan horse, there exists already a restrictive policy that blends information flow control with discretionary access control. But for distributed object-oriented system, existing methods of blending information flow control with discretionary access control are, to our best knowledge, not effective in preventing Trojan horse from leaking information. Subsection 3. 2 explains in detail a message filter algorithm that we propose to make our method of blending information flow with discretionary access control effective in preventing Trojan horse from leaking information for a distributed object-oriented system. Through applying this message filter algorithm to every TCB (Trusted Computing Base) in distributed object-oriented system, we can not only prevent Trojan horse from leaking information but also retain the flexibility of discretionary access control.
Keywords:security   access control   information flow control   Trojan horse   distributed object-orientedsystem
本文献已被 CNKI 维普 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号