摘要
为了保障信息的机密性和完整性,对信息的访问和操作,一般需要遵循一定的安全策略。BLP模型只解决了机密性问题,而Biba模型只解决了完整性问题,其他模型也都类似,无法使二者同时兼顾。基于可信模型的敏感标记集合在数学上应形成格的理论,提出了一种融合以上2种模型信息流的格安全模型,可以同时保持信息机密性与完整性。通过构建新的信息流格模型,将推动信息安全模型的理论研究。
In the computer information systems,in general,some security strategies to access and handle information to protect the confidentiality and integrity of information were followed.The BLP model only solved the confidentiality problem,and the Biba model only solved the integrity problem,the others were similar.It couldn’t give attention to both sides at the same time.Based on the set of sensitivity labels for security model coming into being lattice order theory in math,a lattice security model was proposed,which was combined BLP model and Biba model of information flow.The lattice security model could keep the confidentiality and integrity of the information at the same time.The information security model theory research will be developed through the constructing of the new model of information flow lattice.
出处
《通信学报》
EI
CSCD
北大核心
2010年第S1期105-110,共6页
Journal on Communications
基金
国家自然科学基金资助项目(90718009)
贵州省国际科技合作计划基金资助项目(黔科合外G字[2010]7026号)
贵州省科学技术基金项目(黔科合J字[2010]2104)
重庆文理学院项目基金资助项目(Y2009JS57
68
69)~~