• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>IEEE International Conference on Anti-counterfeiting, Security, and Identification >An improved MLS policy model
【24h】

An improved MLS policy model

机译:改进的MLS策略模型

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Bell-LaPadula model is able to provide excellent protection for confidentiality, but is short of integrity policy. Moreover, its trusted subjects are endowed too much privilege to be conformed with the principle of least privilege. In order to resolve these problems, a new hybrid model called CIUSM is proposed, which takes Bell-LaPadula as the initial model. CIUSM organically absorbs ideas of well-formed transaction in Clark-Wilson model and domain separation in DTE model, which effectively remedy the loss of integrity policy and limit the accessible range of trusted subjects. Finally, safety of CIUSM and Bell-LaPadula are quantitatively estimated and compared based on security entropy theory. Research shows that CIUSM has higher security strength than BLP, being able to meet security requirements for both confidentiality and integrity.
机译:Bell-LaPadula模型能够为机密性提供出色的保护,但缺乏完整性策略。而且,其受信任的主体被赋予太多特权,无法符合最小特权原则。为了解决这些问题,提出了一种新的混合模型CIUSM,该模型以Bell-LaPadula为初始模型。 CIUSM有机地吸收了Clark-Wilson模型中格式正确的交易和DTE模型中域分离的思想,从而有效地弥补了完整性策略的损失并限制了受信任主题的可访问范围。最后,基于安全熵理论对CIUSM和Bell-LaPadula的安全性进行了定量估计和比较。研究表明,CIUSM具有比BLP更高的安全强度,能够同时满足机密性和完整性的安全性要求。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号