多策略适应的一种POSIX权能遗传算法
文献类型:期刊论文
| 作者 | 沈晴霓 ; 卿斯汉 ; 贺也平 ; 沈建军 |
| 刊名 | 通信学报
 |
| 出版日期 | 2006 |
| 卷号 | 27期号:2页码:66-72 |
| 关键词 | 操作系统安全 权能机制 权能遗传算法 最小特权 operating system security capability mechanism capability inheritance algorithm least privilege |
| ISSN号 | 1000-436X |
| 其他题名 | policy-adaptive capability inheritance algorithm consistent with posix standard |
| 中文摘要 | 多数支持POSIX权能机制的安全操作系统提出了各自的权能遗传算法,但这些算法都只适用于特定的最小特权控制策略,并且存在语义冲突、安全目标不明确等问题,不能有效支持多种安全需求不同的特权策略。通过对一些现有算法的深入分析,提出了一种新的权能遗传算法,该算法引入策略关联的权能控制变量以及可信应用属性。实例分析表明本算法具有策略适应性和可用性,形式化分析和验证表明它可使系统满足特权策略的基本安全定理。 |
| 收录类别 | wanfang,cscd,ei |
| 资助信息 | Institute of Software |
| 语种 | 中文 |
| 公开日期 | 2010-08-23 |
| 附注 | In order to support POSIX capability mechanism, many secure operating systems provided individual capability inheritable algorithms. These algorithms were only applicable to specified least privilege control policies, and had such defects as semantic conflicts and no defined security-objectives. So they couldn't flexibly support for implementing diversified privilege policies for different requirements. Based on the analysis of some existing algorithms, a new capability inheritance algorithm was proposed, which introduced the policy-relevant capability control variable and the trusted application attribution. The implementation of the algorithm in ANSHENG secure operating system demonstrates that this algorithm provides such properties as policy-adaptability and usability, the formal analysis and verification of this algorithm proves that it supports a secure operating system to meet basic security theorems of the privilege policies enforced in it. |
| 源URL | [http://124.16.136.157/handle/311060/3740]  |
| 专题 | 软件研究所_基础软件国家工程研究中心_期刊论文 |
| 推荐引用方式 GB/T 7714 | 沈晴霓,卿斯汉,贺也平,等. 多策略适应的一种POSIX权能遗传算法[J]. 通信学报,2006,27(2):66-72. |
| APA | 沈晴霓,卿斯汉,贺也平,&沈建军.(2006).多策略适应的一种POSIX权能遗传算法.通信学报,27(2),66-72. |
| MLA | 沈晴霓,et al."多策略适应的一种POSIX权能遗传算法".通信学报 27.2(2006):66-72. |
入库方式: OAI收割
来源:软件研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。