Method for implementing mandatory access control mechanism of security operating system
A technology of mandatory access control and security system, applied in computer security devices, internal/peripheral computer component protection, instruments, etc., can solve trivial problems, many places that need to be modified in system calls, and easy to cause confusion, etc.
Inactive Publication Date: 2010-06-09
GRADUATE SCHOOL OF THE CHINESE ACAD OF SCI GSCAS
View PDF0 Cites 80 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Although this method can complete the mandatory access control function, it is more difficult to do so
First, this method has high requirements for the quality of system developers, and it is necessary to go deep into the kernel to understand the key system calls, which is a difficult task; There are many places to modify, which are relatively trivial and prone to confusion, which affects the development speed and process
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0178] The present invention describes an implementation method of a mandatory access control mechanism for a secure operating system, which is based on the Linux Security Module (Linux Security Module) framework and includes four parts: a security architecture, a mandatory access control process, a mandatory access control policy model, and a key data structure. Through these four parts, a general framework for implementing mandatory access control can be outlined. The method has the advantages of good versatility, good flexibility, high efficiency and easy use and development.
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention relates to a method for implementing a mandatory access control mechanism of a security operating system, which belongs to the field of the design and implementation of a security operating system. The subject of the security operating system is a security system structure and an access control process. The security system structure requires an operation system to support the mandatory access control mechanism, describe the dependency relationship between hierarchical division and modules in design, be divided into a driving layer, an inner nuclear layer, a system layer and an application layer from the bottom to the top in implementation method and comprise a mandatory access control execution module, a mark management module, a management information processing module, a security initialization module and a storage medium encipherment protection module. The mandatory access control process determines the time and process precedence relationship for implementing the mandatory access control in the security operation system. A support model, a data structure and a hook function specify the details of the implementation. The mandatory access control mechanism is a necessary security function of a high-security operation system. The method can be widely used in the design of high-security operation system.
Description
(1) Technical field [0001] The implementation method of mandatory access control mechanism belongs to the field of safe operating system design and implementation, and is one of the core technologies of information security. (2) Background technology [0002] The operating system is the interface between the application software and the system hardware, and its goal is to use computer resources efficiently, to the maximum extent, and reasonably. The security operating system is to enhance security mechanisms and functions to ensure the confidentiality, integrity and availability of computing resources. Without the support of a secure operating system, the database cannot have the security availability of access control, the security of the network system, and the security of application software information processing. Therefore, the security operating system is the basis of the security of the entire information system. Without the protection of the security operating syst...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/00G06F21/71
Inventor 沈昌祥刘威鹏胡俊张兴
Owner GRADUATE SCHOOL OF THE CHINESE ACAD OF SCI GSCAS
Features
- R&D
- Intellectual Property
- Life Sciences
- Materials
- Tech Scout
Why Patsnap Eureka
- Unparalleled Data Quality
- Higher Quality Content
- 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com