Abstract: According to system dependencies between packages, this paper proposes a label algorithm and makes security marking rules to classify software packages. An application level-type structure is formed. Based on this structure, it uses the mandatory access control mechanism and trust computing technologies to implement the isolation between the application level, to reduce or eliminate unintended interference between applications, intended for providing the user a safe and credible environment.

Key words: label, mandatory access control, trust computing technology, isolation

摘要： 依据系统应用软件包之间的依赖关系，制定安全标记规则并提出一种应用软件包标记算法，对应用软件包进行分级分类，形成一种应用的层次式结构。利用该层次结构，采用强制访问控制机制和可信计算技术，实现应用层次之间的隔离，减少或消除应用之间非预期的干扰，为用户及其应用提供安全可信的运行环境。

关键词: 标记, 强制访问控制, 可信计算技术, 隔离

CLC Number: 

• TP311