Trust Model Based on Structured Protection for High Level Security System 被引量：1

Trust Model Based on Structured Protection for High Level Security System

下载PDF

导出

摘要 In order to ensure the security of information systems, it's essential to make sure that system behaviors are trusted. By analyzing threats that exist in executing procedures, a trust model based on structured protection is proposed. We consider that functional components, system actions and message flows between components are three key factors of information systems. Structured protection requirements on components, connections and action parameters are also provided. Four trusted properties of the model are deducted through formal analysis, and trusted system behavior is defined based on these properties. Furthermore, decision theorem of trusted system behavior is proved. The developed prototype system indicates the model is practical. It is a general theory model built on logic deduction and independent on specific environment and the behaviors of the system designed and implemented following the model are trusted. In order to ensure the security of information systems, it＇s essential to make sure that system behaviors are trusted. By analyzing threats that exist in executing procedures, a trust model based on structured protection is proposed. We consider that functional components, system actions and message flows between components are three key factors of information systems. Structured protection requirements on components, connections and action parameters are also provided. Four trusted properties of the model are deducted through formal analysis, and trusted system behavior is defined based on these properties. Furthermore, decision theorem of trusted system behavior is proved. The developed prototype system indicates the model is practical. It is a general theory model built on logic deduction and independent on specific environment and the behaviors of the system designed and implemented following the model are trusted.

作者 Liao Jianhua Zhao Yong Zhan Jing

机构地区 School of Electronics Engineering and Computer Science School of Computer Science and Technology Key Laboratory of Network Security and Cryptology State Key Laboratory of Information Security

出处《China Communications》 SCIE CSCD 2012年第11期70-77,共8页 中国通信（英文版）

基金 supported by National Science and Technology Major Project under Grant No.2012ZX03002003 Funds of Key Lab of Fujian Province University Network Security and Cryptology under Grant No.2011009 Open Research Project of State Key Laboratory of Information Security in Institute of Software,Chinese Academy of Sciences

关键词 trusted computing security assurance structured protection 信任模型安全系统结构化保护级信息系统执行过程功能部件保护元件

分类号 TP309 [自动化与计算机技术—计算机系统结构] X913 [自动化与计算机技术—计算机科学与技术]

引文网络
相关文献

参考文献20

1SHEN ChangXiang,ZHANG HuanGuo,WANG HuaiMin,WANG Ji,ZHAO Bo,YAN Fei,YU FaJiang,ZHANG LiQiang,XU MingDi.Research on trusted computing and its development[J].Science China(Information Sciences),2010,53(3):405-433. 被引量：38
2OOD. Trusted Computer System Evaluation Criteria (TCSEC) [S]. OOD520028-STD, December 1985. 被引量：1
3BAUMANN A, BARHAM P, DAGAND P, et al. The Mul?tikernel: A New OS Architecture for Scalable Multicore Sys?tems [C]// Proceedings of the ACM SIGOPS 22nd Symposi?um on Operating Systems Principles: October 11-14,2009, Big Sky, Montana. ACM Press, 2009: 29-44. 被引量：1
4TCG. TCG Specification Architecture Overview [S]. Trusted Computing Group. 被引量：1
5ZHANG Shibin, XU Chunxiang, IDNG Yaxing. Study on Terminal Trusted Model Based on Trusted Computing [C]// Proceedings of 2011 International Conference on Internet Technology and Applications: August 16-18,2011, Wuhan, China. IEEE Press, 2011: 1-4. 被引量：1
6ZHOU Hongwei, YUAN Jinhui. Formal Analysis of Trusted Computing: One Case Study [C]// Proceedings of 2011 3rd International Conference on Commmications and Mobile Computing: April 18-20, 2011, Qingdao, China. IEEE Press, 2011: 55-58. 被引量：1
7NICK L. PErRONI J, TIMOTHY F, et al. Copilot-A Copro?cessor-Based Kernel Runtirre Integrity Monitor [C]// Pro?ceedings of the 13th Conference on USENIX Security Sym?posium: August, 2004, San Diego, CA. USENIX Association Berkeley 2004, 13: 13-24. 被引量：1
8WANG Dan, Gill Xilan, FU Lihua. Dynamic Trust Measure?trent Model Based on Information Track Technology [C]// Proceedings of 2011 International Conference on Computer Science and Service System: June 27-29,2011, Nanjing Chi?na. IEEE Press, 2011: 3213-3216. 被引量：1
9Gong Bei,Zhang Jianbiao,Shen Changxiang,Zhang Xing.Behavior Measurement Model Based on Prediction and Control of Trusted Network[J].China Communications,2012,9(5):117-128. 被引量：5
10WIUlAM W, DAVID S, PASCALE P. The Sandbox for A?nalysis: Concepts and Methods [C]// Proceedings of ACM Proceedings of the SIGCHI Conference on Hunan Factors in computing systems: April, 2006. Montreal, Quebec, Can?ada. ACM Press, 2006: 801-810. 被引量：1

二级参考文献29

1SHEN Changxiang, ZHANG Huanguo, WANG Huai-nfin. Research and Development of the Trusted Confuting[J]. Scientia Sinica(Infortmtions), 2010, 28(5): 139-166. 被引量：1
2ZHANG Huanguo, LUO Jie, J1N Gang. Development of Trusted Computing Research. Journal of Wuhan University (Natural Science Edition), 2006, 5:513 - 518. 被引量：1
3Trusted Computing Gaoup, TCG Specification Architecture Overview[EB/OL]. Revision 1.4, 2007. 被引量：1
4TNC [EB/OL]. https :/Iwww. trustedcorqoutinggroup, org/ groups/network/. 被引量：1
5RHEINGOLD H. The V'n'tual Conmmnity: Homesteading on the Electronic Frontier[M]. New York: Addison-Wesley, 2000. 被引量：1
6COLWILLA C. Hunman Factors in Inforn mation Security: The Insider Threat-Who Can You Trust These Days? [J]. Infor- rr~tion Security Technical Report, 2009, 14(4): 186-196. 被引量：1
7WANG Wei. Ceneralized Predictive Control Theory and Appfication[M]. Beijing: Science press, 1998. 被引量：1
8DUSENBERY D. Living at MicroScale: The Unexpected Physics of Being Sn,all[M]. Harvard University Press, Cam- bridge, Mass, 2009. 被引量：1
9LEI Yao. The Discussion of Hunman-Organization Behavior in Complex Systems. Journal of Tsinghua University (Phi- losophy and Social Sciences), 2000(5): 38-42. 被引量：1
10RopertBrown. Croup Process [M]. Beijing: China Light In- dustry Press, 2007. 被引量：1

共引文献41

1田俊峰,朱叶.Trust Shell Based Constitution Model of Trusted Software[J].China Communications,2011,8(4):11-22. 被引量：2
2刘帮涛,罗敏,陈爱国,尹德辉.一种基于可信计算的动态口令机制[J].华中科技大学学报（自然科学版）,2013,41(S1):383-387.
3张焕国,王丽娜,杜瑞颖,傅建明,赵波.信息安全学科体系结构研究[J].武汉大学学报（理学版）,2010,56(5):614-620. 被引量：36
4邓寒冰,赵立军,张霞,刘积仁.大型应用系统软件生产线实践[J].计算机科学与探索,2011,5(7):633-641. 被引量：1
5徐士伟,张焕国.基于应用π演算的可信平台模块的安全性形式化分析[J].计算机研究与发展,2011,48(8):1421-1429. 被引量：5
6LI Jing1,2,ZHANG Huanguo1,2,ZHAO Bo1,2,FANG Lingling1,2 1.School of Computer,Wuhan University,Wuhan 430072,Hubei,China,2.Key Laboratory of Aerospace Information Security and Trust Computing,Ministry of Education,Wuhan 430072,Hubei,China.A Trusted Environment Construction Method for Security-Sensitive Software[J].Wuhan University Journal of Natural Sciences,2011,16(5):383-390.
7刘澜,袁道华,童星,王钟磊.一种针对可信计算平台的分布式可信验证机制[J].计算机工程与应用,2012,48(2):99-102. 被引量：1
8田俊峰,韩金娥,杜瑞忠,王勇.基于软件行为轨迹的可信性评价模型[J].计算机研究与发展,2012,49(7):1514-1524. 被引量：6
9姚文斌.可信计算(1)[J].中兴通讯技术,2012,18(4):59-62. 被引量：1
10Zhang Yichen Li Jiguo Sun Chuanming.Efficient Property-Based Remote Attestation Scheme[J].China Communications,2012,9(10):1-9.

同被引文献1

1闫智,詹静.大数据应用模式及安全风险分析[J].计算机与现代化,2014(8):58-61. 被引量：22

引证文献1

1Jing Zhan,Xudong Fan,Lei Cai,Yaqi Gao,Junxi Zhuang.TPTVer： A Trusted Third Party Based Trusted Verifier for Multi-Layered Outsourced Big Data System in Cloud Environment[J].China Communications,2018,15(2):122-137. 被引量：3

二级引证文献3

1赵波,李想,严飞,张立强,张焕国.面向第三方的云平台可信性在线评测及分析技术[J].网络与信息安全学报,2019,5(5):90-104. 被引量：1
2王杰,陈志刚,刘加玲,程宏兵.基于聚类的云隐私行为挖掘技术[J].计算机工程与应用,2020,56(5):80-84. 被引量：3
3王杰昌,刘玉岭,张平.基于半可信第三方的用户云数据安全存储协议[J].无线电工程,2022,52(1):134-141.

1杨晓屴.VXD探讨及其应用[J].达县师范高等专科学校学报,2004,14(2):52-53.
2姚雪祥,梁建武,张雷.Internet安全防范的实时性研究[J].长沙铁道学院学报（社会科学版）,2006,7(3):192-194.
3徐慧君.Bosch的收入增长领跑四巨头[J].A&S（安全&自动化）,2006(1):64-65.
4程曙光,邓辉文,朱凤龙.基于模糊控制的机箱散热器的设计[J].微计算机信息,2010,26(15):184-185.
5李海燕.Access XP数据库的安全性研究[J].中国安全科学学报,2005,15(5):67-70. 被引量：2
6NI最新CompactRIO控制器将工作温度范围延伸至-40℃到70℃[J].自动化信息,2010(3):15-15.
7国产数据库通过四级信息安全认证[J].中国信息化,2012(11):69-69.
8安全等级保护不能虚有其表[J].计算机与网络,2013(2):46-47.
9贺也平,李丽萍.“结构化保护级”安全操作系统的研制开发[J].信息网络安全,2005(5):57-59.
10Magic dog.浅议安防系统中潜在的安全漏洞[J].黑客防线,2009(11):14-19. 被引量：2

China Communications

2012年第11期

浏览历史

内容加载中请稍等...