作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2012, Vol. 38 ›› Issue (20): 105-108. doi: 10.3969/j.issn.1000-3428.2012.20.027

• 安全技术 • 上一篇    下一篇

XML文档的细粒度强制访问控制研究

潘海雷,吴晓平,廖 巍   

  1. (海军工程大学信息安全系,武汉 430033)
  • 收稿日期:2011-12-28 修回日期:2012-02-23 出版日期:2012-10-20 发布日期:2013-10-17
  • 作者简介:潘海雷(1988-),男,硕士研究生,主研方向:信息安全;吴晓平,教授、博士生导师;廖 巍,副教授
  • 基金资助:
    国家自然科学基金资助项目(61100042);海军工程大学科学研究基金资助项目(HGDYDJJ11008)

Research on Fine-grained Mandatory Access Control for XML Document

PAN Hai-lei, WU Xiao-ping, LIAO Wei   

  1. (Department of Information Security, Naval University of Engineering, Wuhan 430033, China)
  • Received:2011-12-28 Revised:2012-02-23 Online:2012-10-20 Published:2013-10-17

摘要: 为满足XML文档中高安全等级信息机密性和完整性的保护需求,通过对BLP模型的客体安全标签、*-属性及3条安全状态转换规则进行改进,提出一种完整性增强的BLP(IEBLP)模型,分析结果证明,该模型能同时满足数据机密性和完整性要求,并能较好地在XML文档中实现细粒度的强制访问控制。

关键词: XML文档, BLP模型, 完整性增强, 安全标签, 细粒度, 强制访问控制

Abstract: In order to protect the confidentiality and integrity of the high security level information in XML documents, by improving security labels of objects, *-property and three conversion rules of security states, this paper proposes Integrity-enhanced BLP(IEBLP) model. Analysis result shows that it can satisfy the requirements of confidentiality and integrity of the information simultaneously, and realizes fine-grained Mandatory Access Control(MAC) in XML documents.

Key words: XML document, BLP model, integrity enhancement, security label, fine-grained, Mandatory Access Control(MAC)

中图分类号: