检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]东莞理工学院计算机学院,广东东莞523808 [2]华南理工大学机械与汽车工程学院,广州510640 [3]广东省计量科学研究院,广州510405
出 处:《计算机应用》2011年第4期970-974,共5页journal of Computer Applications
基 金:广东省科技攻关重点项目(2007A060304003);广东省科技计划项目(2007B010400046)
摘 要:贸易结算等测量应用要求计量软件及运行环境能有效防范包括管理员在内的各类用户的非授权篡改,但难以得到现有安全模型的有效支持。为此提出面向测量应用的软件保护模型MBSPM,基于角色—域—型访问控制策略分配数据访问权限,利用强制访问控制实施数据分级保护和法制相关软件隔离,依靠防篡改存储防止计量参数的非授权修改,基于可信平台模块(TPM)保护运行环境的完整性。基于虚拟称重系统的应用实例表明,MBSPM可支持计量应用所要求的软件保护特性,与不实施MBSPM的情况相比较,除系统启动时间增加大约50%之外,文件打开和应用启动等操作的速度下降均不超过20%。Measurement applications such as trade settlement require their metrological software and running environment protected against unauthorized modifications from attackers including management user,which is nevertheless not fully supported by the existing secure models.A measurement-oriented software protection model named MBSPM was proposed.Role-domain-type access control strategy was adopted to support authorization of data access permissions to software modules.Mandatory access control was employed to enforce multi-level data protection and separation of legal relevant software.Integrity of system software was validated by use of Trusted Platform Module(TPM).And unauthorized modification on metrology parameters was prevented with tamper-proof storage.The experimental results with a virtual weighing system show that MBSPM supports software protection features required by metrological applications.Compared with the situation without enforcing MBSPM,except for that the startup time increases by about 50%,execution speed of opening files and starting application drops by no more than 20%.
关 键 词:软件保护 安全模型 可信计算 计量测控 越权操作
分 类 号:TP309.2[自动化与计算机技术—计算机系统结构] TP274.2[自动化与计算机技术—计算机科学与技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.145