摘要： 分析经典BLP模型中的非可信主体当前敏感级fC和“宁静原则”存在的不合理性，针对该问题，利用动态变化的主体敏感级v-max/a-min代替主体当前敏感级fC。为解决完整性保护问题，提出一个扩展的BLP模型，模型中引入主体的完整性和主客体的可信度，对于客体可信度，从完整性和可信性2个方面进行保护，同时对主体的可信度采用动态变化原则，并给出一个EBLP模型在操作系统中的应用实例。

关键词: BLP模型, 动态敏感级, 可信度, 完整性

Abstract: The inconsequence of the current sensitivity level fC of subjects and the tranquility principle in the typical BLP model is analyzed. The problems by replacing fC with the dynamical sensitivity pair v-max/a-min is fixed. In order to incorporate with the integrity protection, an extended BLP model which introduces the integrity of subjects and the credibility of subjects and objects is presented. This model distinguishes the credibility protection of objects with the integrity protection of objects and uses dynamical credibility level. An example for how to use the EBLP on operating systems is given.

Key words: BLP model, dynamical sensitivity level, credibility, integrity

中图分类号: 

• TP309