摘要： 提出的BSK 安全模型是一种达到B 级安全的轻量级安全内核模型。BSK 对监控器和BLP 模型进行扩充，借鉴Mach 消息传递机制，采用面向对象机制，提出了基于安全对象的安全对象模型和消息调度模型，并且给出了BSK 消息调度算法。消息调度中主体对客体的访问是有状态的，通过安全检测的访问路由信息存放于缓冲器中，避免过多的安全判定对性能的损失。

关键词: 监控器模型；BLP；BSK；安全容器；安全对象代理

Abstract: This paper presents a model for the lightweight security kernel using B-level security. This model of B-level security kernel (BSK) is used to highlight security level in the traditional reference monitor model and Bell-Lapadula model. BSK presents security object notation based three classes of object and message dispatch model. Finally, it presents the BSK message dispatch algorithm. A message dispatch targeted for class B1 or above must enforce performance adopting a route cache policy over all subjects and objects it controls.

Key words: Reference monitor; BLP; BSK; Secure container; Secure object proxy