摘要
描述了一种系统安全的模型,并对应用程序作了形式上的描述。基于以上两点,设计实现了Unix下的一个基于规则的安全检测工具,通过模型(系统和应用程序)的建立,对主机系统的分析和一组规则的使用,模拟系统中特权流和信息流的相互作用。
Here we present a formal model of system security. The key improvement is the description of interaction between subjects andobject. In addition, we preseni formal description of system applications (especially privi1eged programs). Based on the model and programdescription, we design and implement a rule-based security check tool on Unir. By modeling of the system, analyzing the target host andusing of rules, the security of the target host can be considered in a whole.
出处
《计算机工程》
CAS
CSCD
北大核心
1999年第8期42-44,共3页
Computer Engineering
