摘要
在系统地介绍了中间件层采用实时CORBA的MILS三层软件结构的基础上,根据MILS多级安全与CORBA对象请求代理相结合的特殊性,指出系统存在的常见安全威胁与迫切的安全需求。同时针对上述问题,分析了中间件CORBA与安全服务有关的重要组件,并给出在CORBA内部应用拦截器和安全服务实现访问控制机制的基本原理与流程,其中访问控制规则采用改进的BLP算法,最后对安全性改善做了详细说明。
On the basis of giving a systematic introduction about the three-layer software structure of MILS with the middleware real-time CORBA, according to the particularity of the combination of the multi-level security in MILS and the object request broker in CORBA, the common security threats existing in system and urgent security needs were pointed out. In response to these issues, the important components of the middleware CORBA about security service was put into analysis, at the same time the basic principle of the access control through the interceptors and security service within CORBA was put forward, especially a detail introduction on the process of the mechanism, where applying improved BLP model. At last, a detail description of the improvement in performance of the system security was given.
出处
《互联网天地》
2013年第1期50-54,共5页
China Internet
基金
航空科学基金资助项目(No.2010ZC31002
No.2010ZC31001.No.20101981015)
