Research of duality and multi-level security model based on intransitive noninterference theory

LIU Wei-peng1; ZHANG Xing2

您当前的位置：

首页 >

文章列表页 >

Research of duality and multi-level security model based on intransitive noninterference theory

更新时间：2024-10-14

- Research of duality and multi-level security model based on intransitive noninterference theory
- Vol. 30, Issue 2, Pages: 52-58(2009)
- 作者机构：
  
  1. 中国科学院研究生院信息安全国家重点实验室
  2. 解放军信息工程大学电子技术学院
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP309
- Published：2009
- 稿件说明：
移动端阅览
LIU Wei-peng1, ZHANG Xing2. Research of duality and multi-level security model based on intransitive noninterference theory[J]. 2009, 30(2): 52-58.
DOI：

LIU Wei-peng1, ZHANG Xing2. Research of duality and multi-level security model based on intransitive noninterference theory[J]. 2009, 30(2): 52-58. DOI：

摘要

提出了一个新的基于非传递无干扰理论的二元多级安全模型

其分别依据BLP和Biba模型的思想保护信息的机密性和完整性。为增强模型的实际可用性

引入了机密性可信域和完整性可信域

其在机密性检查室和完整性检查室内对违反安全策略的操作进行检查。基于信息流的非传递无干扰理论对于该模型进行了严格的形式化描述

并证明了其安全性

近一步讨论了其在Linux操作系统中的实现和在实际中的应用。该研究对于国家信息内容安全基础设施中敏感信息的保护具有一定的理论和实用价值。

Abstract

A novel duality and multi-level security model（DMLSM） based on intransitive noninterference theory was proposed

which protects confidentiality of information based on BLP model and integrity based on Biba model.To en-hance the usability of model

it introduces confidentiality trusted domain and integrality trusted domain which check the operations that violate the security policy in confidentiality check-room or integrity check-room respectively

then allow or refuse the access.The strict formal description of the model based on intransitive noninterference theory of informa-tion flow is given;furthermore

it proves the security of the model.The implementation of the model in Linux operating system is discussed and the application of model in practice is also demonstrated.The research gives Some contributes on the protection for sensitive important information and national information content security infrastructure.

关键词

Keywords

references

Views

773

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Access control security model based on behavior in cloud computing environment

Access control model based on trusted computing for integrated avionics system

Secret level valuation method of BLP model based on some application properties

Reconstruction of BLP model based on secure subject access

Study on enhancing integrity for BLP model

Related Author

Shan HE

Hao HUANG

Ji-yi WU

Wei CHEN

Guo-yuan LIN

MA Jian-feng1

CUI Xi-ning1

Related Institution

School of Computer,China University of Mining and Technology

Department of Computer,Nanjing University

Hangzhou Normal University,Key Lab of E-Business and Information Security

School of Computer Science and Technology,Xidian University

Aeronautics Computing Technology Research Institute

AI问答

⁰