首页 | 本学科首页   官方微博 | 高级检索  
     

一个基于进程保护的可信终端模型
引用本文:陈菊,谭良. 一个基于进程保护的可信终端模型[J]. 计算机科学, 2011, 38(4): 115-117,150
作者姓名:陈菊  谭良
作者单位:四川师范大学计算机科学学院,四川省可视化计算与虚拟现实重点实验室,成都,610101
基金项目:本文受国家自然科学基金面上项目(60970173),四川省科技厅项目(2008JY0105-2),四川省教育厅项目(07Z!1091)资助。
摘    要:针对外包数据库系统中的隐私匹配问题,提出了基于分布针对计算机终端是网络系统中安全风险的根源问题之一,提出了一种新的基于进程保护的可信终端模型。该模型通过进程静态、动态保护和进程间无千扰来判定系统的可信性。进程静态保护的主要功能是确保进程代码和辅助文件的完整性,进程动态保护的主要功能是防止进程运行的相关数据被篡改,进程间无干扰的功能是基于无千扰理论判断进程交互的合法性。理论分析结果表明,该模型的可信性与基于可信根的无干扰可信模型等价。但该模型不仅有效克服了基于可信根的无千扰可信模型中的可信传递函数。Check( )的不合理性,而且将系统的状态、动作具体化,使得该模型更直观、具体,更容易理解,与实际的终端系统更相符。

关 键 词:无干扰理论,进程保护,可信终端,可信根

Trusted Terminal Model Based on Process Protection
CHEN Ju,TAN Liang. Trusted Terminal Model Based on Process Protection[J]. Computer Science, 2011, 38(4): 115-117,150
Authors:CHEN Ju  TAN Liang
Affiliation:(Key Lab of Visualization in Scientific Computing and Virtual Reality of Sichuan, College of Computer,Sichuan formal University, Chengdu 610101 , China)
Abstract:Aimed at the problem that the computer terminal is the source of the safe risk in the network system, this paper proposed a new reliable terminal model based on non-interference theory. It asserts the system's trust by the protection of static and dynamic process and non-inference among processes. The main function of static process protection is to protect the integrity of the process's code and the auxiliary file. The main function of dynamic process protection is to prevent the related data from being tampered. The function of non-inference among process is to judge the legitimacy of process alternation. The theoretical security analysis shows that the credibility of this model equals the non-interferonce model based on the trusted root. However, this model not only overcomes the trusted transfer function's irrationality of the non-interference trusted model based on trusted root, but also externalizes system static and action. Then it ismore intuitive, concrete, easier to understand and in line with the actual terminal system.
Keywords:Non-interference thcory  Process protection   Trusted terminal   Trusted root
本文献已被 万方数据 等数据库收录!
点击此处可从《计算机科学》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号