基于可信包装的可信软件构造模型(英文) 被引量：2

Trust Shell Based Constitution Model of Trusted Software

下载PDF

导出

摘要 Since the guarantee of trustiness is considered inadequate in traditional software development methods,software developed using these methods lacks effective measures for ensuring its trustiness.Combining agent technique with the support of trusted computing provided by TPM,a trust-shell-based constitution model of trusted software(TSCMTS)is demonstrated,trust shell ensures the trustiness of software logically.The concept of Trust Engine is proposed,which extends the "chain of trust" of TCG into application,and cooperates with TPM to perform integrity measurement for software entity to ensure the static trustiness;Data Structure called trust view is defined to represent the characteristic of software behavior.For the purpose of improving the accuracy of trustiness constraints,a strategy for determining the weights of characteristic attributes based on information entropy is proposed.Simulation experiments illustrate that the trustiness of software developed by the TSCMTS is improved effectively without performance degradation. Since the guarantee of trustiness is consid-ered inadequate in traditional software development methods, software developed using these methods lacks effective measures for ensuring its trustiness. Combining agent technique with the support of trus-ted computing provided by TPM, a trust-shell-based constitution model of trusted software (TSCMTS) is demonstrated, trust shell ensures the trustiness of software logically. The concept of Trust Engine is proposed, which extends the ' chain of trust' of TCG into application, and cooperates with TPM to perform integrity measurement for software entity to ensure the static trustiness; Data Structure called trust view is defined to represent the characteristic of software behavior. For the purpose of improving the accuracy of trustiness constraints, a strategy for determining the weights of characteristic attributes based on information entropy is proposed. Simulation experiments illustrate that the trustiness of software developed by the TSCMTS is improved effectively without performance degradation.

作者田俊峰朱叶

机构地区 College of Mathematics and Computer Science

出处《China Communications》 SCIE CSCD 2011年第4期11-22,共12页 中国通信（英文版）

基金 National Natural Science Foundation of China under Grant No. 60873203 Foundation of Key Laboratory of Aerospace Information Security and Trusted Computing Ministry of Education under Grant No. AISTC2009_03 Hebei National Funds for Distinguished Young Scientists under Grant No. F2010000317 National Science Foundation of Hebei Province under Grant No. F2010000319

关键词 trusted computing trusted software constitution trust shell trust engine trust view software behavior trace trusted computing trusted software constitution trust shell trust engine trust view software behavior trace

分类号 TP309 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献13

1杨芙清,梅宏,吕建,金芝.浅论软件技术发展[J].电子学报,2002,30(12A):1901-1906. 被引量：163
2罗军舟,seu.edu.cn,沈俊,顾冠群.从Petri网到形式描述技术和协议工程[J].软件学报,2000,11(5):606-615. 被引量：41
3刘大有,杨鲲,陈建中.Agent研究现状与发展趋势[J].软件学报,2000,11(3):315-321. 被引量：313
4肖庆,宫云战,杨朝红,金大海,王雅文.一种路径敏感的静态缺陷检测方法[J].软件学报,2010,21(2):209-217. 被引量：27
5林惠民,张文辉.模型检测:理论、方法与应用[J].电子学报,2002,30(12A):1907-1912. 被引量：163
6MEI Hong,LIU XuanZhe.Software techniques for Internet Computing:Current situation and future trend[J].Chinese Science Bulletin,2010,55(31):3510-3516. 被引量：4
7李晓勇,沈昌祥.一个动态可信应用传递模型的研究[J].华中科技大学学报（自然科学版）,2005,33(z1):310-312. 被引量：14
8陈火旺,王戟,董威.高可信软件工程技术[J].电子学报,2003,31(z1):1933-1938. 被引量：115
9刘静,何积丰,缪淮扣.模型驱动架构中模型构造与集成策略[J].软件学报,2006,17(6):1411-1422. 被引量：26
10姚立红,訾小超,黄皓,茅兵,谢立.基于系统调用特征的入侵检测研究[J].电子学报,2003,31(8):1134-1137. 被引量：17

二级参考文献102

1陈火旺,王戟,董威.高可信软件工程技术[J].电子学报,2003,31(z1):1933-1938. 被引量：115
2黄涛,沈昌祥.一种基于可信服务器的可信引导方案[J].武汉大学学报（理学版）,2004,50(A01):12-14. 被引量：19
3王怀民,唐扬斌,尹刚,李磊.互联网软件的可信机理[J].中国科学（E辑）,2006,36(10):1156-1169. 被引量：59
4LU Xicheng,WANG Huaimin,WANG Ji.Internet-based virtual computing environment(iVCE):Concepts and architecture[J].Science in China(Series F),2006,49(6):681-701. 被引量：33
5MEI Hong HUANG Gang ZHAO Haiyan JIAO Wenpin.A software architecture centric engineering approach for Internetware[J].Science in China(Series F),2006,49(6):702-730. 被引量：37
6WANG Huaimin TANG Yangbin YIN Gang LI Lei.Trustworthiness of Internet-based software[J].Science in China(Series F),2006,49(6):759-773. 被引量：28
7Denning D. An intrusion detection model. IEEE Trans. on Software Engineering, 1987,13(2):222-232.
8Forrest S. A sense of self for UNIX processes. In: Proc. of the IEEE Symp. on Security and Privacy. Oakland: IEEE Press, 1996. 120-128. http://www.cs.unm.edu/-forrest/publications/ieee-sp-96-unix.pdf
9Hofmeyr SA, Forrest S, Somayaji A. Intrusion detection using sequences of system calls. Journal of Computer Security, 1998, 6(3):151-180.
10Helman P, Bhangoo J. A statistically based system for prioritizing information exploration under uncertainty. IEEE Trans. on Systems, Man and Cybernetics, Part A: Systems and Humans, 1997,27(4):449466.

共引文献924

1王领.物联网智能决策平台中的多条件约束决策[J].舰船科学技术,2019,0(20):190-192. 被引量：2
2孙中红.一个基于Multi-agent理论的个性化计算机导师系统[J].鲁东大学学报（自然科学版）,2008,24(1):34-37.
3宋晖,杨杰,黄罡,梅宏.ABCTool中软件体系结构运行视图的可视化[J].计算机工程与科学,2006,28(z2):110-112.
4刘文,孙熙,焦文品,王千祥.一种基于自主构件的网构软件协作框架[J].计算机研究与发展,2006,43(z1):217-221. 被引量：5
5张庆生,齐勇,赵季中,候迪.基于移动代理的上下文感知系统研究[J].计算机研究与发展,2006,43(z1):250-255.
6李伟,乔欣.基于Petri网的多Agent系统建模的研究[J].系统仿真学报,2005,17(z1):140-144. 被引量：1
7陈火旺,王戟,董威.高可信软件工程技术[J].电子学报,2003,31(z1):1933-1938. 被引量：115
8李凡长.基于Agent的遗传算法描述与演化模型研究[J].小型微型计算机系统,2003,24(1):118-122. 被引量：3
9罗军舟,杨晓燕.从协议Petri网到Estelle的转换[J].系统仿真学报,2003,15(z1):78-82.
10王媛丽,殷建平,赵建民,毛晓青.MAS研究的历史与现状[J].计算机科学,2002,29(z1):265-267.

同被引文献37

1沈昌祥,张焕国,王怀民,王戟,赵波,严飞,余发江,张立强,徐明迪.可信计算的研究与发展[J].中国科学：信息科学,2010,40(2):139-166. 被引量：248
2Wagner D and Dean D. Intrusion detection via static analysis[C]. Proceedings of the IEEE Symposium on Security and Privacy, Oakland, USA, 2001:156-169.
3Liu Z, Bridges S M, and Vaughn R B. Combining static analysis and dynamic learning to build accurate intrusion detection models[C]. Proceedings of the 3rd IEEE Int'l Workshop on Information Assurance, College Park, Maryland, March 23-24, 2005: 164-177.
4Giffin J, Jha S, and Miller B. Efficient context-sensitive intrusion detection[C]. Proceedings of the llth Network and Distributed System Security Symposium, San Diego, USA, 2004: 1-15.
5Hsu C J and Huang C Y. An adaptive reliability analysis using path testing for complex component-based software systems[J]. IEEE Transactions on Reliability, 2011, 60(1): 158-170.
6Pu S and Lang B. An intrusion detection method based on system call temporal serial analysis[C]. Proceedings of the 3rd International Conference on Intelligent Computing, Qingdao, China, August 21-24, 2007: 656-666.
7Li Z and Tian J F. A software behavior automaton model based on system call and context[J]. Journal of Computers, 2011, 6(5): 889-896.
8Wang S and Sun H. Mesuring overlap-rate for cluster merging in a hierarchical approach to color image segmentation[J]. International Journal of Fuzzy Systems, 2004, 6(3): 147-156.
9Larsen R J and Marx M L. An Introduction to Mathematical Statistics and Its Applications[M]. 4th Ed., Upper Saddle River, New Jersey 07458: Pearson Prentice Hall, 2006: 292-316.
10Wang Y M and Luo Y. Integration of correlations with standard deviations for determining attribute weights in multiple attribute decision making[J]. Mathematical and Computer Modeling, 2010, 51(1-2): 1-12.

引证文献2

1李珍,田俊峰,赵鹏远.基于分级属性的软件监控点可信行为模型[J].电子与信息学报,2012,34(6):1445-1451. 被引量：2
2Gao Yang,Peng Yong,Xie Feng,Dai Zhonghua,Xu Guo'ai.Modeling and Dynamic Analysis in Software Systems Based on Complex Networks[J].China Communications,2012,9(12):137-143.

二级引证文献2

1赵炳麟,孙启超,赵荣彩,范超.基于行为轨迹属性的软件动态可信模型[J].计算机应用研究,2016,33(4):1150-1153.
2李珍,田俊峰,常卓,马晓雪.基于检查点的分布式软件监控与可信性评价[J].通信学报,2016,37(3):7-19. 被引量：2

1展超.清新、细致、柔美 Mordaunt-Short(敏特声) Mezzo 8[J].家庭影院技术,2009(6):48-49.
2雷霆.真正做到了平衡Mordaunt-Short(敏特声)Mezzo 8落地音箱[J].视听技术,2009,0(8):27-31.
3蒋柏峰,吴琨,吕晓德.基于奇异值分解的单快拍DOA估计方法[J].中国电子科学研究院学报,2017,12(1):60-66. 被引量：4
4融入新材料和新科技的应用Mordaunt-Short（敏特声）Aviano Series[J].家庭影院技术,2009(10):6-6.
5郭晓天,绳伟光,毛志刚.基于目标可信性的可信软件测试过程[J].微电子学与计算机,2015,32(7):46-49. 被引量：2
6新唐科技推出全球首款安全性芯片——NPCT6xx[J].中国集成电路,2015,24(11):52-52.
7慈骋.我新的Hi-Fi利器——PROTON(普腾)AM20放大器和MordauntShort(敏特声)MS10i(R)书架箱[J].音响技术,1998(4):37-38.
8英国Mordaunt-Short（敏特声）新品扬声器系列[J].高保真音响,2009(11):70-70.
9Mordaunt—Short（敏特声）Carnival系列家庭影院扬声器[J].音响世界,2008(4):73-73.
10武莉.基本型门限视觉密码的构造方法[J].计算机光盘软件与应用,2012,15(2):80-80.

China Communications

2011年第4期

浏览历史

内容加载中请稍等...