计算机工程 ›› 2007, Vol. 33 ›› Issue (01): 161-163.doi: 10.3969/j.issn.1000-3428.2007.01.056

• 安全技术 • 上一篇    下一篇

访问控制的验证测试方法研究

丁洪达1,2,曾庆凯1,2,包必显1,2   

  1. (1. 南京大学计算机软件新技术国家重点实验室,南京 210093;2. 南京大学计算机科学与技术系,南京 210093)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-01-05 发布日期:2007-01-05

Study of Test Approach on Access Control

DING Hongda1,2, ZENG Qingkai1,2, BAO Bixian1,2   

  1. (1. State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing 210093; 2. Department of Computer Science and Technology, Nanjing University, Nanjing 210093)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-01-05 Published:2007-01-05

摘要: 对访问控制的评测是信息系统和产品安全评估中的一项重要内容。该文从安全标准中对访问控制的需求出发,研究了访问控制的自动测试方法,扩展了GFAC测试接口,并且使用该方法实现了在Linux+RSBAC的环境下对自主访问控制的自动测试。

关键词: 自主访问控制, 通用访问控制框架, 自动测试, 通用准则

Abstract: Test and validation of access control is a crucial part of the security evaluation of the system. A testing approach by extending GFAC is proposed, automatically to test the access control service according to requirements of security evaluation based on common criteria. The implementation of testing on Linux+RSBAC demonstrates the approach available.

Key words: Discretionary access control, Generalized framework for access control, Automation test, Common criteria(CC)