构建UNIX主机安全系统

Construction of Security System for UNIX Host

针对涉密局域网中UNIX主机的安全需求,重点研究“可信环境”下UNIX主机的信息安全防护理论和技术,针对UNIX系统的安全漏洞、威胁及风险,设计了UNIX主机的安全保护策略,提出了主机可适应性安全管理模型。对系统总体设计方案、主要功能模块设计、开发平台以及本系统涉及的一些关键技术和方法进行了详细叙述,为内部网络中的主机系统提供了有效的安全保护手段。

This project aims at the requirements of classified information on UNIX, mainly studies the theory and technology of UNIX host under the unsuspecting environment. A design of security policy aiming at the leakage, threatening and risk is described, and a security management model of host adaptability is proposed. The paper discusses also the design and tools of a host security management system based on UNIX etc.. It introduces the whole architecture of the system.