基于角色的操作系统完整性控制模型

Role Based Integrity Control Model for Operating System

完整性是操作系统的安全目标之一。分析了安全操作系统的完整性保护策略,详细说明了用户职责和进程可信度是决定系统中用户、进程和文件完整级的重要因素。提出了一个完整性控制模型,该模型使用角色来简化对用户完整级的管理。分别给出了模型的完整性公理、模型元素、系统状态的定义、系统设置方法和以及状态转换规则,并对模型进行了正确性证明,最后介绍了模型的应用实例和实现方法。

Integrity is one of the security objectives of operating system. This paper analysed the integrity protection policies of security operating system, and elaborated user responsibility and process reliability are important factors in determining the integrity level of the users, the processes and the files in operating system. Then we proposed an integrity control model with detailed description of its integrity axiom, model elements, system states, system configurations and state transition rules. The model employs roles to simplify user integrity management. The correctness of given model was proven. The application case and implementation method were given at the end of the paper.