一种面向对象系统安全模型

An Object Oriented System Security Model

提出了一种面向对象安全模型．这个模型是一种信息流模型，其主要元素是对象．对象之间通过一个特殊对象——消息，进行信息交流．基于面向对象和通信顺序进程（ＣＳＰ）的概念。

An object oriented security model is presented, which is a kind of information flow model whose main elements are objects with multilevel security labels. An object can transfer its information to another object via a particular object, i.e., message. A method of specifying and proving the security of an object oriented system using communication sequential process (CSP) is given, that is, using CSP to describe the algorithm of the message filter in an object oriented system with multilevel messages transferred among objects and, at the same time, to write the specification of the system. As a result, the proof that an object oriented system satisfies a given security policy or policies with the same language for the specification of the systems functions and security policies is simplified.