Multi-level security model based on trusted computing

Computer Engineering and Applications ›› 2011, Vol. 47 ›› Issue (27): 122-125.

• 网络、通信、安全 • Previous Articles Next Articles

Multi-level security model based on trusted computing

YANG Bei，WU Zhenqiang，YANG Xiaobo

School of Computer Science，Shaanxi Normal University，Xi’an 710062，China

Received:1900-01-01 Revised:1900-01-01 Online:2011-09-21 Published:2011-09-21

基于可信计算的多级安全模型

杨蓓，吴振强，杨小勃

陕西师范大学计算机科学学院，西安 710062

Abstract

Abstract: The current multi-level security model is lack of security mechanism for information on the visit process.Based on trusted computing technology，the UCON（Usage Control） model is improved to construct a multi-level security model which considers both confidentiality and integrity.The improved model can protect the security of information throughout the whole visit process，and the integrity verify policy is used to meet the integrity of information.The improved model can also facilitate security administrators to choose proper security policy according to the application，which increase the flexibility of the system.

Key words: multi-level security, trusted computing, Usage Control（UCON）

摘要： 针对当前多级安全模型在访问过程中缺乏信息安全保护机制的不足，基于可信计算技术对使用控制模型进行改进，实现保密性和完整性两者兼顾的多级安全模型。改进模型将在整个访问过程中对信息的安全性进行保护，并运用完整性验证策略保护信息的完整性，同时方便安全管理员根据管理需要，对安全策略进行调整，提高了系统的灵活性。

关键词: 多级安全, 可信计算, 使用控制

YANG Bei，WU Zhenqiang，YANG Xiaobo. Multi-level security model based on trusted computing[J]. Computer Engineering and Applications, 2011, 47(27): 122-125.

杨蓓，吴振强，杨小勃. 基于可信计算的多级安全模型[J]. 计算机工程与应用, 2011, 47(27): 122-125.

[1]	HE Liwen, HOU Xiaoyu, TANG Chengcheng, ZHOU Rui, ZHANG Xingning. Rootkit Universality Detection Method for Heterogeneous BIOS Environments [J]. Computer Engineering and Applications, 2019, 55(23): 105-112.
[2]	WANG Yong1，2, SHANG Wenli2, ZHAO Jianming2, WAN Ming2, YUAN Weiwei1. Design of embedded trusted computing platform based on TPM [J]. Computer Engineering and Applications, 2018, 54(13): 105-110.
[3]	MA Liang, QIAN Xuezhong. Research on critical path of Web service call based on trusted computing [J]. Computer Engineering and Applications, 2016, 52(3): 230-235.
[4]	SHANG Jing, XU Kaiyong, YANG Qichao. Trusted boot for computer centralized control system-oriented architecture [J]. Computer Engineering and Applications, 2015, 51(17): 64-69.
[5]	ZHAO Bo1，2, FEI Yongkang1，2, XIANG Shuang1，2, LI Yifan1，2. Research and implementation of secure boot mechanism for embedded systems [J]. Computer Engineering and Applications, 2014, 50(10): 72-77.
[6]	CHENG Ge, LI Cong. Research progress of trusted computing environment [J]. Computer Engineering and Applications, 2013, 49(13): 59-64.
[7]	LIU Lan, YUAN Daohua, TONG Xing, WANG Zhonglei. Distributed trusted verification mechanism for trusted computing platform [J]. Computer Engineering and Applications, 2012, 48(2): 99-102.
[8]	CHONG Huifang，WU Zhenqiang，WANG Haiyan. Property-supported self-attestation model and its secure protocol [J]. Computer Engineering and Applications, 2011, 47(7): 110-113.
[9]	GAI Xinmao1，2，SHEN Changxiang2，3，LI Yong2，4，LIU Yi3. Method for layering components towards structured protection [J]. Computer Engineering and Applications, 2011, 47(36): 25-28.
[10]	LI Yong1，LI Guang2，SHEN Changxiang3. Research of trusted channel model [J]. Computer Engineering and Applications, 2011, 47(26): 70-73.
[11]	MA Hua1，ZHANG Hongyu2. Component selection approach combining trust fuzzy evaluation and dynamic clustering [J]. Computer Engineering and Applications, 2011, 47(21): 73-76.
[12]	CHEN Nan，ZHU Jianming . Analysis and design of trusted online banking authentication protocol [J]. Computer Engineering and Applications, 2011, 47(12): 65-68.
[13]	WANG Hai-yan，WU Zhen-qiang，CHONG Hui-fang，JIANG Li. TPM-based authenticated key agreement protocol in trusted computing [J]. Computer Engineering and Applications, 2010, 46(35): 115-118.
[14]	DUAN Zhi-peng，HE Hong-jun，LUO Li，FANG Zhi-he，WANG Yang. Access control model based on reputation in P2P environment [J]. Computer Engineering and Applications, 2010, 46(33): 78-81.
[15]	GONG Lei^1，2，3，ZHAO Yong³，HAN Pei-sheng^1，3，LI Yu³. Research on security protective framework for typical application system [J]. Computer Engineering and Applications, 2010, 46(28): 90-93.

Multi-level security model based on trusted computing

基于可信计算的多级安全模型

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics