摘要
安全策略是系统安全管理的基础。分布式环境的复杂性使策略配置中不可避免地存在冲突。如何有效地分析检测策略冲突并解决冲突是应用安全策略的关键。提出了一个极具一般性的安全策略形式化描述方法,并定义了安全策略描述要素间的逻辑关系;给出了安全策略间的冲突分类描述;针对不同的冲突类型给出了相应的冲突检测算法及消解方法。
Security policy is the base of system security management.It is difficult to eliminate policy conflict in the distribution system because of its complexity.Therefore,conflict detection and elimination of policy is the key to realize policy-based system defense.This paper proposed a general formal description of policy,defined the logic relationship among the policy s elements,and classified the conflicts of policy,then discussed some conflict detection and elimination methods corresponding to the conflicts.
出处
《计算机应用》
CSCD
北大核心
2009年第3期823-825,829,共4页
journal of Computer Applications
关键词
安全策略
冲突检测
冲突消解
security policy
conflict detection
conflict elimination