计算机工程与应用2017,Vol.53Issue(9):103-110,8.DOI:10.3778/j.issn.1002-8331.1511-0127
基于信息客体统一化描述的安全标记绑定研究
Research on binding of secure label based on unified description of information object
摘要
Abstract
How to bind secure label to information object is always a key problem that restricts MLS from practicality on network. This paper puts forward a method for binding secure label to information object based on unified description of information object. Firstly, this method analyzes types of information objects, and establishes unified description model of multi-types information objects based data tree. Then, an algorithm about binding secure label to information object is giv-en based on traversal of tree. Finally, operations on information object in multilevel security network are discussed. The method can not only unify the method of binding between multi-types information object and secure label, which may im-prove flexibility of binding, but also accomplish fine-grained mandatory access control, which may solve the problem that access control of heterogeneous data among multilevel secure system is more difficult.关键词
等级保护/多级安全/数据树/安全标记/标记绑定Key words
classified security protection/Multilevel Security(MLS)/data tree/secure label/binding of secure label分类
信息技术与安全科学引用本文复制引用
曹利峰,李海华,杜学绘,陈性元..基于信息客体统一化描述的安全标记绑定研究[J].计算机工程与应用,2017,53(9):103-110,8.基金项目
国家自然科学基金(No.61502531) (No.61502531)
国家高技术研究发展计划(863)(No.2012AA012704). (863)
