Cross-network file mandatory access control method, device and system
A mandatory access control, cross-network technology, applied in transmission systems, electrical components, etc., can solve the problem of non-implementation of mandatory access control, and achieve the effect of implementing mandatory access control, reliable design principles, and wide application prospects
Pending Publication Date: 2021-12-07
INSPUR SUZHOU INTELLIGENT TECH CO LTD
View PDF6 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
[0004] Aiming at the problem that the mandatory access control of object files on the target machine by different users of client machines in different computer operating systems between networks has not been realized, the present invention provides a cross-network file mandatory access control method, device, and system
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0058]In order to make those skilled in the art better understand the technical solutions of the present invention, the present invention in conjunction with the following drawings in the embodiments, the technical solutions in the embodiments of the present invention will be clearly and completely described, obviously, the described Example embodiments are merely part of embodiments of the present invention rather than all embodiments. Based on the embodiments in the present invention, those of ordinary skill in the art may belong to the scope of the present invention in the range of the present invention without all other embodiments obtained without making creative labor.
[0059] netlabel: network label, which is a mechanism kernel security module to the network is generated from a reference mechanism to user space packets destined for network security attributes paste. Kernel security module use the network reference mechanism to read the security attribute of those data pack...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention provides a cross-network file mandatory access control method, device and system. The cross-network file mandatory access control method comprises the following steps: receiving a request for accessing a server file; acquiring a security mark of a file to be accessed; setting a security mark for a data packet of a to-be-accessed file; after setting is completed, transmitting the data packet to the client machine; after the transmission is completed, obtaining a security mark of the data packet; acquiring a security mark of a client machine user; and comparing the security mark of the obtained data packet with the security mark of the client machine user, and judging whether the client machine user has the access authority to the server file or not. Compared with the prior art, the security level distinguishing of different users and files is increased, the mandatory access control of the client user to the server machine file is realized by comparing the security marks of the client user and the server data file, the security of remote file access is improved, and the security of data is enhanced.
Description
Technical field [0001] The present invention relates to inter-network access technologies, and in particular, to a file across a network mandatory access control method, apparatus, system. Background technique [0002] Linux operating system, including access control discretionary access control (DAC) and Mandatory Access Control (MAC), discretionary access control (DAC) to determine the other main group or user access to the object by the owner of the object. Mandatory Access Control (MAC) security token provided by the main subject and object, is determined by determining whether security tag subjects and objects owned by whether the subject has access to the object. [0003] In the existing mandatory access control implementation, most implementations are on the same computer operating system subject to mandatory access control objects, and the existing network file access control is limited to the network packets simple access control, and there is no hierarchical classificat...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/10H04L63/105H04L67/10
Inventor 刘波董世江窦志冲
Owner INSPUR SUZHOU INTELLIGENT TECH CO LTD