安全Linux内核安全功能的设计与实现

DESIGN AND IMPLEMENTATION OF SECURE LINUX KERNEL SECURITY FUNCTIONS

CC标准是一个新的国际标准 ,由于缺乏可借鉴的范例 ,开发符合 CC标准的安全操作系统是一项挑战性的工作 .借助一项研究实验结合中国安全保护等级划分准则第 3条款 ,讨论了安全 L inux内核安全功能在 CC框架下的设计与实现问题 ,通过 CC功能需求组件给出安全功能的定义 ,从系统结构和安全模型方面讨论安全功能的实现方法 ,并测算安全机制产生的性能负面影响 .研究表明 ,中国国家标准的要求可以通过 CC标准进行描述 .最后 ,还指出了安全操作系统进一步的研究方向 .

The Common Criteria (CC) was adopted as the international standard for information security evaluation in July 1999. The newness of the CC and the lack of experiences in its application throw great challenge to the development of secure operating systems with conformance to the CC philosophy. Based on a research experiment, the design and implementation of kernel security functions for a secure Linux system named RS Linux are discussed with intention to capture some fundamental CC concepts. The clauses for a third level system of the China Classified Criteria for Security (CCCS) are taken into consideration in determining the security functions. The definition of the security functions is presented in the form of the CC security functional requirement components. The instantiation of the security functions is stated from the aspects of the security support architecture and the security models interpretation in a Linux system. An empirical means is given to estimate the negative impact of RS Linux security mechanisms on the system performance. Research shows that demands of the CCCS can be described completely with constructs provided in the CC. A direction of further research on secure operating systems is pointed out at the end of the paper.