[关键词]
[摘要]
建立了一个面向最小特权管理的修改BLP安全模型.该模型引入了角色管理、域隔离、隐蔽通道限制、病毒防护等概念,并实际应用于自主开发的安全操作系统SecLinux中.
[Key word]
[Abstract]
In this paper, a MBLP (modified BLP) security model is presented which is PAC (privileged access control) oriented. Some concepts such as role management, domain compartment, limitation of covert channels and defence of viruses, are introduced. MBLP is applied to SecLinux, which is a self-developed secure operating system the authors.
[中图分类号]
[基金项目]
国家自然科学基金资助项目(60083007);国家重点基础研究973发展规划资助项目(G1999035810);中国科学院知识创新工程资助项目(YC2K5609)