检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
出 处:《北京工业大学学报》2013年第12期1861-1867,共7页Journal of Beijing University of Technology
基 金:国家科技重大专项资助项目(2012ZX03002003);核高基重大专项资助项目(2010ZX01037-001-001)
摘 要:为了实时监控系统状态转换过程、及时感知异常执行轨迹和越权功能调用等非法行为,从系统行为和权限控制角度出发,提出一种基于访问验证的安全保障方法,通过明确系统状态转换规则,确保系统在工作过程中状态可信,并通过理论证明和攻击实例分析表明该方法的现实可行性.When industrial control systems with a high security level were in poor working conditions or encounter vicious attacks, safety problems such as behavior tracks abnormity and privilege-exceeding call would come out to affect the safety of production. In order to solve the problem, a safety method based on access verification was proposed from the perspective of system action and privilege control. To ensure the state security during working conditions, system state transition rules were defined and the system state could be monitored in real time. Illegal behaviors such as abnormal execute traces and privilege- exceeding function calls would be detected in time. The feasibility of the method was further illustrated by theoretical identification and analysis of attack instances.
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.222