| 基于自动机监控的二维降密策略 |
| |
| 引用本文: | 金 丽,朱 浩.基于自动机监控的二维降密策略[J].计算机科学,2015,42(7):194-199. |
| |
| 作者姓名: | 金 丽 朱 浩 |
| |
| 作者单位: | 南通大学江苏省专用集成电路设计重点实验室 南通226019,南京航空航天大学计算机科学与技术学院 南京210016;南通大学计算机科学与技术学院 南通226019 |
| |
| 基金项目: | 本文受江苏省博士后科研资助 |
| |
| 摘 要: | 降密策略静态实施机制具有限制性过强的缺陷:它将降密策略语义条件判定为安全的程序排斥在外。为了建立更加宽容的实施机制,基于自动机理论,建立了二维降密策略的动态监控机制。程序执行中的命令事件被抽象为自动机的输入,自动机根据这些输入信息跟踪程序执行过程中的信息流,禁止违反降密策略的程序命令的执行。最后,证明了自动机监控机制的可靠性。
|
| 关 键 词: | 信息流 自动机 保密性 无干扰 |
Declassification Policy Based on Automaton Monitoring |
| |
| JIN Li and ZHU Hao.Declassification Policy Based on Automaton Monitoring[J].Computer Science,2015,42(7):194-199. |
| |
| Authors: | JIN Li and ZHU Hao |
| |
| Affiliation: | Jiangsu Key Laboratory of ASIC Design,Nantong University,Nantong 226019,China and School of Computer Science and Technology,Nanjing University of Aeronautics and Astronautics,Nanjing 210016,China;School of Computer Science and Technology,Nantong University,Nantong 226019,China |
| |
| Abstract: | Static enforcement mechanisms of declassification policies have the flaw of over restrictive,which exclude the programs judged secure by semantic conditions of declassification policies.In order to provide more permissive enforcement mechanisms,we established the dynamic monitoring mechanisms for the two-dimension declassification policy based on the automaton theory.Command events generated during the running of a program are abstracted as the inputs of automaton,and these inputs are used by the automaton to track the information flow during the program running.The command that violates the declassification policy will be forbidden.Additionally,we proved that the mechanisms based on automaton monitoring are sound. |
| |
| Keywords: | Information flow Automaton Confidentiality Non-interference |
|
|
点击此处可从《计算机科学》下载全文 |
|
