| 引用本文: | 何鸿君,罗莉,曹四化,等.基于用户意愿的文件访问控制策略.[J].国防科技大学学报,2007,29(6):54-58,80.[点击复制] |
| HE Hongjun,LUO Li,CAO Sihua,et al.A File Access Control Policy Based on User's Intention[J].Journal of National University of Defense Technology,2007,29(6):54-58,80[点击复制] |
|
| |
|
|
| 本文已被:浏览 6508次 下载 5667次 |
| 基于用户意愿的文件访问控制策略 |
| 何鸿君, 罗莉, 曹四化, 宁京宣, 李朋, 董黎明 |
|
(国防科技大学 计算机学院,湖南 长沙 410073)
|
| 摘要: |
| 访问控制是保护计算机上文件安全的重要技术手段。针对文件攻击,提出一种量化的评估方法,对主流访问控制策略进行了量化评估,指出主流访问控制策略的脆弱性在于赋予了程序访问用户能够访问的文件集合的权利。提出一种基于用户意愿的访问控制策略,其风险远远小于主流访问控制策略,能够防御未知文件攻击,证明了策略的安全性质,并讨论了其实现方案。 |
| 关键词: 访问控制 用户意愿 文件攻击 恶意程序 |
| DOI: |
| 投稿日期:2007-06-13 |
| 基金项目:国家部委基金资助项目 |
|
| A File Access Control Policy Based on User's Intention |
| HE Hongjun, LUO Li, CAO Sihua, NING Jingxuan, LI Peng, DONG Liming |
|
(College of Computer, National Univ. of Defense Technology, Changsha 410073, China)
|
| Abstract: |
| Access control is an important technique to protect computer files. Aiming at malwares that attack files, the paper proposes a quantified estimation method, and points out that the fragibility of prevalent access control policies lies in authorizing programs to access files what the user can access. The paper novelly proposes an access control policy based-on user's intention, which is able to defend unknown file attacks, and has extraordinarily less risk than prevalent access control policies. Furthermore, the paper proves security properties of the policy presented, and its application is discussed. |
| Keywords: access control user's intention file attack malware |
|
|
|
|
|
