计算机工程与应用 ›› 2007, Vol. 43 ›› Issue (34): 1-2.

• 博士论坛 • 上一篇    下一篇

一种新的保密性与完整性统一安全策略

周 正1,刘 毅2,沈昌祥2   

  1. 1.海军工程大学 电气与信息工程学院,武汉 430033
    2.海军计算技术研究所,北京 100841
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-12-01 发布日期:2007-12-01
  • 通讯作者: 周正

New kind of secrecy/integrity union policy

ZHOU Zheng1,LIU Yi2,SHEN Chang-xiang2   

  1. 1.College of Electrical and Information Engineering,Naval University of Engineering,Wuhan 430033,China
    2.Naval Institute of Computing Technology,Beijing 100841,China

  • Received:1900-01-01 Revised:1900-01-01 Online:2007-12-01 Published:2007-12-01
  • Contact: ZHOU Zheng

摘要: 提出了一种新的保密性与完整性统一安全策略,以保密性和完整性作为计算机安全中的两个维度,在不同的维度上支持不同的级别划分标准,在两个方向上综合实施安全策略和访问控制。形式化地阐述了模型如何实现保密性和完整性的综合安全,如何避免通过交互访问操作以及多角色实体的存在造成的泄密与完整性破坏事件。

关键词:
BLP模型,
Biba模型, 保密性防护, 完整性防护

Abstract: A new kind of secrecy/integrity union policy is presented.The two dimensions of computer security are composed of secrecy and integrity,non which different classifications are supported respectively,whereupon protection policies and access controls are synthetically carried out.The principle to enforce secrecy and integrity synchronously and to avoid compromise from interaction or multi-roled entities is expatiated in a formal method.

Key words: BLP model, Biba model, secrecy enforcement, integrity enforcement