摘要: 经典Biba模型的严格完整性策略在应用中未考虑主客体操作的复杂性,且信息向操作系统安全子系统(SSOOS)范围外传输时存在完整性问题。针对上述问题,根据GB/T 20272-2006中结构化保护级标准对安全操作系统完整性的要求,在主客体完整性的灵活性、操作复杂性、SSOOS之外完整性标签等方面对Biba模型进行改进。理论分析结果证明,该模型在确保经典Biba模型完整性的基础上,大幅提升了系统的可用性。
关键词:
Biba模型,
安全操作系统,
完整性模型,
结构化保护级,
完整性策略
Abstract: The strict integrity strategy of classical Biba model does not consider the problem of complexity in application of host-guest and the problem of the integrity of the label when the information transmits to outside of Security Subsystem of Operating System(SSOOS). According to GB/T 20272-2006 specification for safety operating system, this paper improves classical Biba model in the flexibility in integrity of host-guest, operation complexity and the integrity of the label beside SSOOS. Theory analysis result shows that improved Biba model enhances system usability on basis of guaranteeing integrity of Biba model.
Key words:
Biba model,
security operating system,
integrity model,
structural protection level,
integrity policy
中图分类号:
郭荣春, 刘文清, 徐宁, 李继云. Biba改进模型在安全操作系统中的应用[J]. 计算机工程, 2012, 38(13): 96-98.
GUO Rong-Chun, LIU Wen-Qing, XU Ning, LI Ji-Yun. Application of Improved Biba Model in Security Operating System[J]. Computer Engineering, 2012, 38(13): 96-98.