论文部分内容阅读
为解决局域网环境下信息的私密性控制问题,该文提出了EL-BLP模型,解决了L-BLP模型中安全和实用方面的不足。EL-BLP模型主要采用增加客体的限定条件、修改和扩展主体的行为集合、定义新的状态转化规则3种方法,使模型的适用终端类型得到了扩展,同时增强了对局域网内主体行为的描述能力。该文证明了EL-BLP状态转换规则的安全性,并实现了一个原型系统。该系统表明此模型能够在不改变局域网中现有设备的基础上,适用于多种不同终端构成的局域网环境,可以较好地解决局域网环境下信息访问的私密性控制问题。
In order to solve the privacy control of information in LAN environment, this paper proposes the EL-BLP model to solve the security and practical problems in the L-BLP model. The EL-BLP model mainly adopts three kinds of methods: increasing the restriction of the object, modifying and expanding the behavior set of the main body, and defining the new state transition rule, which expands the applicable terminal type of the model and enhances the description of the main body’s behavior in the LAN ability. This paper demonstrates the security of EL-BLP state transition rules and implements a prototype system. The system shows that this model can be applied to a variety of local area network (LAN) environments composed of different terminals without changing existing equipment in the LAN and can better solve the problem of privacy control of information access in a LAN environment.