摘要
虚拟化技术作为云计算的核心技术,相对于传统技术具有节约开销、易于管理、灵活制定等优势,成为业界应用的热点技术。文章研究了传统的BLP多级安全模型,并改进了该模型应用于虚拟化系统访问控制,结合虚拟安全域的概念,设计实现了虚拟化系统访问控制模型,主要结合分级分域原则对虚拟机之间的通信控制和虚拟机对虚拟磁盘的访问控制进行约束。
Virtualization technology as the core technology of the cloud computing technology,compared to traditional technology with cost saving,easy management,flexible development and other advantages,becomes the hot technology in the industry application.In this paper,the traditional BLP multilevel security mode wsa studied,and the application of the model to the virtualized system access control was improved,combined with the concept of virtual security domain,the virtual control system was designed and implemented,and the communication control between the virtual machines and the access control of the virtual machine to the virtual disk were mainly combined with the hierarchical classification principle.
作者
孙阳
刘京
郎静宏
柯文浚
SUN Yang;LIU Jing;LANG Jinghong;KE Wenjun(Naval Aviation University,Yantai Shandong 264001,China;China Aerospace Academy of Systems Science and Engineering,China;China Aerospace of Space Technology,Beijing 100048,China)
出处
《海军航空工程学院学报》
2018年第6期523-530,共8页
Journal of Naval Aeronautical and Astronautical University
基金
国家自然科学基金资助项目(51505493)
航空科学基金资助项目(2016ZA01008)
关键词
云计算
BLP多级安全模型
虚拟安全域
分级分域
访问控制
cloud computing
BLP multi-level security model
virtual security domain
hierarchical domain partition
access control
