| 基于安全熵的访问控制模型量化分析方法 |
| |
| 引用本文: | 王超,陈性元,熊厚仁,曾光.基于安全熵的访问控制模型量化分析方法[J].计算机工程与设计,2012,33(8):2911-2914,2925. |
| |
| 作者姓名: | 王超 陈性元 熊厚仁 曾光 |
| |
| 作者单位: | 解放军信息工程大学电子技术学院,河南郑州,450004 |
| |
| 基金项目: | 国家973重点基础研究发展规划基金项目(2011CB311801);河南省科技创新人才计划基金项目(114200510001) |
| |
| 摘 要: | 针对访问控制模型的量化分析问题,提出基于安全熵的安全性量化分析方法。结合信息论有关知识引入安全熵概念,基于安全熵对模型的安全性进行定义;应用该方法对BLP等经典安全模型进行了量化分析,验证了该方法的实用性,并指出了访问控制模型和BLP模型对非授权间接访问防护方面的不足。实验结果表明,该方法适用于访问控制模型的安全性度量以及系统的访问控制能力评估。
|
| 关 键 词: | 信息熵 安全熵 访问控制模型 安全性量化分析方法 模型安全性 非授权间接访问 |
Quantitative analysis method to access control model based on security entropy |
| |
| WANG Chao
,
CHEN Xing-yuan
,
XIONG Hou-ren
,
ZENG Guang.Quantitative analysis method to access control model based on security entropy[J].Computer Engineering and Design,2012,33(8):2911-2914,2925. |
| |
| Authors: | WANG Chao CHEN Xing-yuan XIONG Hou-ren ZENG Guang |
| |
| Affiliation: | (Institute of Electronic Technology,PLA information Engineering University,Zhengzhou 450004,China) |
| |
| Abstract: | To resolve the problem of quantitative analysis on access control model,a method to access control model’s security quantitative analysis based on security entropy is proposed.Firstly,the security entropy is put forward according to the information theory,and the security of access control model is defined based on security entropy.Then,the typical access control models are analyzed by the method,the validity of the method is proved,and the shortage of unauthorized indirectly access protection in access control matrix model and BLP is pointed out.The result proves that the methods is suit for security quantitative analysis on access control model and evaluation to access control capability in information system. |
| |
| Keywords: | information entropy security entropy access control model security quantitative analysis method security of model unauthorized indirectly access |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
