中国科学院机构知识库网格
Chinese Academy of Sciences Institutional Repositories Grid
semantic remote attestation for security policy

文献类型:会议论文

作者Qian Zhang ; Yeping He ; Ce Meng
出版日期2010
会议名称semantic remote attestation for security policy
会议日期2010
会议地点Seoul
关键词SELinux policy appraoch binary code logical programming policy analysis technique query security policy semantic remote attestation Linux logic programming query processing security of data
页码40551
英文摘要In the software environment with security policy enforced, the behavior of application depends on not only its binary code, but also the enforcing security policy. Therefore, remote attestation for security policy is as important as that for binary code. However, since the specialties of security policy, which include more mutable and mixture of semantics, it is not suitable to use integrity measurement as the evidence to verify trustworthy of security policy. In this paper, we propose a novel semantic approach to remote attest security policy. This approach utilizes policy analysis technique to extract semantics from security policy, and utilizes logical programming to query required semantics from the mixture of semantics in security policy. We design and implement this approach on SELinux policy in this paper and discuss the security of this implementation on the basis of verified trust of TCB.
ISBN号978-1-4244-5941-4
源URL[http://124.16.136.157/handle/311060/8898]  
专题软件研究所_基础软件国家工程研究中心_会议论文
推荐引用方式
GB/T 7714
Qian Zhang,Yeping He,Ce Meng. semantic remote attestation for security policy[C]. 见:semantic remote attestation for security policy. Seoul. 2010.

入库方式: OAI收割

来源:软件研究所

浏览0
下载0
收藏0
其他版本

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。