检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]解放军信息工程大学电子技术学院,河南郑州450004
出 处:《计算机应用与软件》2010年第5期78-82,共5页Computer Applications and Software
基 金:国防教研基金重点资助项目(9140A26010306JB5201)
摘 要:高级安全策略又称为安全需求,低级策略配置是高级策略的实现,正确的低级策略配置必须能够满足安全需求。网络安全取决于低级策略配置的正确性,由于策略配置异常复杂,并且缺乏准确描述安全需求的方法,这为策略的正确性分析提出了巨大的挑战。采用逻辑编程方法来分析网络安全策略,通过将低级策略配置、高级策略、漏洞信息等元素转化为逻辑程序,将网络中所有可能存在的访问与安全需求进行对比,判定策略配置是否满足安全需求,并给出所有不满足安全需求的策略配置。We treat high-level policy as security requirement and low-level policy as the implementation of the high-level policy,a proper low-level policy configuration must meet the security requirement.Network Security depends on the correctness of low-level policy configuration,but for the sake of extreme complexity in policy configuration as well as lacking the means of accurate description of the security requirement,the validity analysis of the policies is posed a terrible challenge.We use logic programming to perform policy analysis on network security.By translating low-level policy configuration,high-level policy and vulnerability database into logic program and contrasting all kinds of possible accesses with security requirements,the policy configuration can be determined of whether or not to have met the security requirement,together with a list of all those policy configurations unsatisfying the security requirement.
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.28