Analysis of two improved BLP models | |
He, Jian-Bo ; Qing, Si-Han ; Wang, Chao | |
刊名 | ruan jian xue baojournal of software
![]() |
2007 | |
DOI | 10.1360/jos181501 |
英文摘要 | The security and flexibility are two goals that various improved BLP models attempt to achieve. How to enhance the flexibility of BLP model is a challenging problem that security researchers try to solve. However, the implementation of an insecure 'security model' in the system will result in an insecure system. In this paper, two improved BLP models, for short DBLP (dynamic BLP) and SLCF (security label common framework), are analyzed. Although the designers of the two models claimed that their proposals can adjust the security level of the untrusted subject dynamically and accordingly improve the flexibility of the classical BLP model, the analytic results show that the two improved models are not secure at all. Under the rules of the two improved models a Trojan horse can 'legally' read the high-level information and then write them to low-level objects, which violate the principle of multi-level security (MLS). This effort provides a theoretical foundation for avoiding the choice of insecure MLS model.; EI; 0; 6; 1501-1509; 18 |
语种 | 英语 |
内容类型 | 期刊论文 |
源URL | [http://ir.pku.edu.cn/handle/20.500.11897/410238] ![]() |
专题 | 软件与微电子学院 |
推荐引用方式 GB/T 7714 | He, Jian-Bo,Qing, Si-Han,Wang, Chao. Analysis of two improved BLP models[J]. ruan jian xue baojournal of software,2007. |
APA | He, Jian-Bo,Qing, Si-Han,&Wang, Chao.(2007).Analysis of two improved BLP models.ruan jian xue baojournal of software. |
MLA | He, Jian-Bo,et al."Analysis of two improved BLP models".ruan jian xue baojournal of software (2007). |
个性服务 |
查看访问统计 |
相关权益政策 |
暂无数据 |
收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论