| MILS机载安全操作系统设计 |
| |
| 引用本文: | 胡林平.MILS机载安全操作系统设计[J].航空计算技术,2012(2):110-112,122. |
| |
| 作者姓名: | 胡林平 |
| |
| 作者单位: | 中航工业西安航空计算技术研究所,陕西西安710068 |
| |
| 基金项目: | 航空科学基金项目资助(20091931006) |
| |
| 摘 要: | 针对构建MILS安全嵌入式操作系统需求,提出一种基于微内核的安全机制。通过微内核的安全监控机制和时空隔离结构,为系统提供安全性和可靠性的基础支撑,避免操作系统中访问控制机制被篡改、绕过,采用任务间时空隔离和消息传递机制使得各个安全关键任务独立运行,通过受控的消息机制进行交互,有效保证了各个模块的独立安全性。采用微内核架构能够进一步形式化验证,从而在安全的系统结构的下提高任务的安全性和可靠性。
|
| 关 键 词: | 多级安全 微内核 时空隔离 |
Design of MILS Secure Embedded Operating System |
| |
| HU Lin-ping.Design of MILS Secure Embedded Operating System[J].Aeronautical Computer Technique,2012(2):110-112,122. |
| |
| Authors: | HU Lin-ping |
| |
| Institution: | HU Lin-ping(Xi′an Aeronautics Computing Technique Research Institute,AVIC,Xi′an 710068,China) |
| |
| Abstract: | In order to building the MILS embedded operating system,a secure mechanism built in the micro-kernel is presented which supports secure partitioning.In order to keep from tampering and bypassing the access control mechanism of secure operating system,the presented method adopts time-space separation structure to support the integrity of the secure kernel.Each application process can individually run and interact by the exchange of messages based on the process separation and the message delivery mechanism of the micro-kernel,which supports protecting individual security of each module.The present method of the micro-kernel can be verified by the formalization means,and enhance the security and dependability of system due to the simplified system structures. |
| |
| Keywords: | multi-level security micro-kernel space separation |
| 本文献已被 CNKI 维普 等数据库收录! |
|
