摘要
本文在对Bell-La Padula模型进行深入分析的基础上,提出了在某些Linux和UNIX安全操作系统设计中对Bell-LaPadula模型的一种错误理解,并结合实际生活中的安全操作对模型进行分析,并给出了模型的形式化操作规则和保密性证明,表明该模型完全符合保密性要求,从而纠正了安全策略的错误制订,避免造成系统的失泄密。
Based on a thorough analysis of BLP model, the paper points out that there is an incorrect understanding on BLP model in designing the security of Linux and UNIX operating systems. We analyze the model integrated with secure operations in real life.Then we give the formal operation rules of the model and verify its confidentiality. Our work proves that this BLP model accords well with the requirement of confidentiality. So correction on the security policy is made to avoid consequently the disclosure.
出处
《计算机应用与软件》
CSCD
北大核心
2002年第11期8-11,共4页
Computer Applications and Software
基金
国家重点基础研究发展规划项目(G1999035801)的资助
关键词
安全策略
安全操作系统
BLP模型
强制访问控制
BLP model Mandatory access control Security operating system Security policy
