|
|||||
|
|
| 基于LSM框架的审计系统的设计与实现 | |
| 引用本文: | 王富良,贺也平,李丽萍.基于LSM框架的审计系统的设计与实现[J].中国科学院研究生院学报,2005,1(6):707-711. |
| 作者姓名: | 王富良 贺也平 李丽萍 |
| 作者单位: | 1. 中国科学院信息安全技术工程研究中心,北京,100080 2. 中国科学院软件研究所,北京,100080 3. 中国科学院研究生院,北京,100049 |
| 基金项目: | 国家自然科学基金项目(60083007),国家重点基础研究发展规划(973)项目(G1999035802)资助 |
| 摘 要: | LSM(Linux Security Modules)是Linux系统的通用访问控制框架,在安胜安全操作系统v4.0中,我们在这一访问控制框架的基础上做了适当的扩展并设计实现了安全审计系统。该安全审计系统与安胜安全操作系统V2.0相比,性能得到了很大的提高。另外,隐蔽通道会绕过系统的安全策略来进行非法的数据流传输,我们在审计系统中进行了实时检测和报警。 |
| 关 键 词: | 安全操作系统 安全审计 LSM |
| 文章编号: | 1002-1175(2005)06-0707-05 |
| 修稿时间: | 2004年11月17 |
Design and Implementation of LSM Based Secure Auditing System |
|
| WANG Fu-Liang,HE Ye-Ping,LI Li-Ping.Design and Implementation of LSM Based Secure Auditing System[J].Journal of the Graduate School of the Chinese Academy of Sciences,2005,1(6):707-711. | |
| Authors: | WANG Fu-Liang HE Ye-Ping LI Li-Ping |
| Institution: | 1 Engineering Research Center for Information Security Technology, The Chinese Academy of Sciences, Beijing, 100080, China 2 Institute of Software, The Chinese Academy of Sciences, Beijing 100080, China 3 Graduate School, The Chinese Academy of Sciences, Beijing 100080, China |
| Abstract: | LSM is the access control framework for Linux system. In the ANSHENG secure operating system V4.0,a secure auditing system based on the extended Linux Security Modules was introduced.Compared with the secure auditing system of ANSHENG secure operating system V2.0,the LSM based auditing system has a better performance.Last,the auditing system developed a method to detect covered channels in our ANSHENG secure operating system V4.0. |
| Keywords: | secure operating system secure audit Linux Security Modules(LSM) |
| 本文献已被 CNKI 万方数据 等数据库收录! | |
| 点击此处可从《中国科学院研究生院学报》浏览原始摘要信息 | |
| 点击此处可从《中国科学院研究生院学报》下载免费的PDF全文 | |