通用软件封装器在Linux中强制访问控制的实现

REALIZATION OF MANDATORY ACCESS CONTROL IN LINUX BY GENERIC SOFTWARE WRAPPER

下载PDF

导出

摘要基于Linux系统设计并实现的通用软件封装器是一个可实现多种安全措施的通用平台,如访问控制、入侵检测等。重点阐述了利用通用软件封装器在Linux中实现强制访问控制的机制,并与SELinux进行了详细的比较。给出了实验结果并进行了分析,结果达到预期目的。 Generic Software Wrapper（GSW） is designed and realized in Linux kernel, on which many security policies, such as access control and intrusion detection, can be realized. Emphasis is focused on the realization mechanism of mandatory access control by using GSW, and detailed comparison to SELinux is presented. Experimental results are given and analyzed, which reach the anticipated purpose.

作者赵文进石昭祥胡荣贵

机构地区解放军电子工程学院网络工程系

出处《计算机应用与软件》 CSCD 北大核心 2008年第1期247-249,共3页 Computer Applications and Software

关键词通用软件封装器自主访问控制强制访问控制 Generic software wrapper（GSW） Discretionary access control（DAC） Mandatory access control（MAC）

分类号 TP316.81 [自动化与计算机技术—计算机软件与理论]

引文网络
相关文献

参考文献5

1Avolio F M,Ranum M J.A Network Perimeter with Secure External Access[J].In Proceedings of the Internet Society Symposium on Network and Distributed System Security,Glenwood,Maryland,February 1994.TIS Technical Report #0491.
2Badger L.A Domain and Type Enforcement UNIX Prototype[J].In Usenix Computing Systems,1996,9 (1):47-83.
3Bell D E,Padula L L.Secure Computer System:Unified Exposition and Multics Interpretation[J].Technical Report ESD-TR-75-306,Electronics Systems Division,AFSC,Hanscom AF Base,Bedford,Massachusettes,1976.
4Bershad B N,Savage S.Extensibility,Safety and Performance in the SPIN Operating System[J].In Operating Systems Review,December 1995.
5Biba K J.Intergrity Considerations for Secure Computer Systems[J].Technical Report ESD-TR-76-372.USAF Electronic System Division,Bedford,Massachusettes,1977.

1赵文进,石昭祥,胡荣贵.基于Linux内核的通用软件封装器的设计与实现[J].计算机工程,2007,33(5):47-49.
2罗卫星,赵文进.基于Linux的通用软件封装器在信息防护方面的研究[J].计算机时代,2007(4):18-20.

计算机应用与软件

2008年第1期

浏览历史

内容加载中请稍等...

通用软件封装器在Linux中强制访问控制的实现

参考文献5

相关作者

相关机构

相关主题

浏览历史