Abstract: The important target of secure system is integrity and security. BLP is a classical security model, Clark-Wilson model can fully represent the needs of the integrity. A kind of multi-level security policy Model Based on Well-informed application (MBW) is presented. MBW uses well-informed application to flow information from low-level to high level and uses role-based ways to separate duty among users of operating well-informed application. Certification rules and enforcement rules make the role of operating system and application system clear in the process of implementing MBW.

Key words: well-formed application class, BLP model, Clark-Wilson model, role

摘要： 安全系统的重要目标是完整性和保密性，BLP模型是经典的保密性模型，Clark-Wilson模型是最能反映完整性保护需求的模型。该文提出一种基于良构应用的多级安全策略模型，利用良构应用完成信息从低保密等级流向高保密等级的工作，利用基于角色的方法完成在使用良构应用的用户间的职责隔离，从而保证了系统的保密性和完整性。在模型的具体实施中，模型的执行规则和保证规则明确了操作系统和应用系统在实现该模型中所扮演的角色。

关键词: 良构应用类, BLP模型, Clark-Wilson模型, 角色

CLC Number: 

• TP309