| 支持MLS的多层次嵌入式高可信软件架构 |
| |
| 引用本文: | 杨霞,雷剑,熊光泽.支持MLS的多层次嵌入式高可信软件架构[J].电子科技大学学报(社会科学版),2009(6). |
| |
| 作者姓名: | 杨霞 雷剑 熊光泽 |
| |
| 作者单位: | 电子科技大学计算机科学与工程学院; |
| |
| 基金项目: | 国家863计划(2007AA01Z131); 电子科技大学青年基金项目(L08010601JX05030、L08010601JX0752) |
| |
| 摘 要: | 为增强安全关键系统的高可信能力,在分析高可信保障机制现状的基础上,提出了一种多层次的高可信软件架构。该架构采用时空分离思想、虚拟机技术,为基于MLS的嵌入式安全关键系统提供了一种整体解决方案。基于该架构,研究了多层次的安全和防危策略管理方法、信息流控制机制、可信软件的评估和认证方法,为安全关键嵌入式系统提供可认证的安全服务。
|
| 关 键 词: | BLP安全模型 信息流控制 多级安全 安全关键系统 安全分离内核 |
Multi-Layered Trusted Architecture Supporting MLS for Embedded Systems |
| |
| YANG Xia,LEI Jian, XIONG Guang-ze.Multi-Layered Trusted Architecture Supporting MLS for Embedded Systems[J].Journal of University of Electronic Science and Technology of China(Social Sciences Edition),2009(6). |
| |
| Authors: | YANG Xia LEI Jian XIONG Guang-ze |
| |
| Institution: | YANG Xia,LEI Jian,, XIONG Guang-ze(School of Computer Science , Engineering,University of Electronic Science , Technology of China Chengdu 610054) |
| |
| Abstract: | To improve the dependability of security/safety-critical systems,after analyzing status quo of high dependable safeguard mechanism,a multi-layered architecture based on the concept of separation and the VM is proposed,which supports applications with multi-level security.This paper researches multi-layered security/safety policy,the information flow control mechanism and the evaluation and certification for trusted software.This architecture can provide trustworthy services for the embedded security/safety-... |
| |
| Keywords: | BLP security model information flow control multi-level security security/safety-critical systems security separation kernel |
| 本文献已被 CNKI 等数据库收录! |
