摘要
基于Agent技术,通过引入可信平台模块(TPM)并扩展系统信任链,提出一种新的层次化可信系统架构,在不可信的服务器与不可信的用户之间建立信任关系,实现了两者之间安全可靠的互操作.在TPM的支持下,从保密性和完整性两个维度以及能力和属性两个方面对数据访问操作的主客体进行量化评级,确定访问规则,实现了保密性与完整性相统一的安全访问策略,降低了用户与服务器被攻击的风险,保障了系统的可信运行,与现有的访问控制策略相比具有更高的安全性.
Based on the Agent technology,TPM(trusted platform module)was introduced to extend the system trusted chain,and the hierarchical trusted architecture was built.Thus a trusted relationship between untrusted servers and users was established,realizing the safe and reliable interoperation between them.With the support of TPM,which supplies quantitative rating for the operations of subjects and objects according to their capabilities and attributes,obtain the secure access strategy in terms of confidentiality and integrity,lower the risk of users and servers' being attacked,and guarantee the system's credible operation.It has higher security compared with the existing access control models.
出处
《武汉大学学报(理学版)》
CAS
CSCD
北大核心
2013年第6期539-544,共6页
Journal of Wuhan University:Natural Science Edition
基金
国家自然科学基金资助项目(61170254)
国家科技支撑计划项目(2013BAK07B04)
河北省自然科学基金资助项目(F2010000325)
