| BLP安全模型及其发展 |
| |
| 引用本文: | 王昌达,鞠时光. BLP安全模型及其发展[J]. 江苏大学学报(自然科学版), 2004, 25(1): 68-72 |
| |
| 作者姓名: | 王昌达 鞠时光 |
| |
| 作者单位: | 江苏大学计算机科学与通信工程学院,江苏,镇江,212013;江苏大学计算机科学与通信工程学院,江苏,镇江,212013 |
| |
| 基金项目: | 国家自然科学基金资助项目(60373069),江苏省自然科学基金资助项目(BK200204) |
| |
| 摘 要: | 经典的BLP模型是在计算机安全系统中实现多级安全性支持的基础,被视作基本安全公理.BLP模型采用“强制存取控制”和“自主存取控制”来实现其安全性,总结了BLP模型的“公理化描述”、“有限状态机模型描述”和“信息流的格模型描述”三种不同描述方法,分析了其BLP模型目前存在的安全缺陷主要是:安全级定义的不完备性、信息完整性缺陷、时域安全性缺陷和隐通道.在对BLP模型的改进中,影响较大的主要有BLDM与MBLP两种模型,
|
| 关 键 词: | 安全模型 安全策略 BLP |
| 文章编号: | 1671-7775(2004)01-0068-05 |
| 修稿时间: | 2003-05-02 |
BLP model and its evolution |
| |
| WANG Chang-da,JU Shi-guang. BLP model and its evolution[J]. Journal of Jiangsu University:Natural Science Edition, 2004, 25(1): 68-72 |
| |
| Authors: | WANG Chang-da JU Shi-guang |
| |
| Abstract: | The classical BLP model is the base of multi-level system and is treated as a basic axiom within computer security. BLP model adopts MAC and DAC to implement its security characters. Three representation methods of BLP model:axiom representation, finite-state machine representation and information flow lattice model representation are summarized. It is found that four main defects in BLP model exist, that are, incompleteness of security level definition, disintegrality of information, defect of time domain security and defect of covert channel. BLDM and MBLP model are two influential improvements over BLP model. |
| |
| Keywords: | security model security policy BLP |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
