摘要： 为了对恶意下载行为实施有效控制，研究通用访问控制框架和使用控制模型(UCON)，提出基于流量的UCON。设计并实现基于UCON的防恶意下载系统，阐述其关键技术和实现方法。实验结果表明，该模型能有效控制用户下载行为，具有高安全性和较强的操作灵活性。

关键词: 通用访问控制框架, 使用控制模型, 传输层驱动程序接口

Abstract: In order to control the malicious download behavior effectively, this paper studies the Generalized Framework for Access Control(GFAC), Usage CONtrol model(UCON), and presents UCON based on flow. It designs and implements the anti-malicious download system based on UCON, expatiates its key technologies and implementation method. Experimental results show that the model can control the user’s download behavior effectively while has high security and running agility.

Key words: Generalized Framework for Access Control(GFAC), Usage CONtrol model(UCON), Transport Driver Interface(TDI)

中图分类号: 

• TP309.2