计算机科学

计算机科学 ›› 2013, Vol. 40 ›› Issue (5): 38-41.

• 2012多值逻辑专栏 • 上一篇    下一篇

基于MILS CORBA的多级安全分区通信机制

崔西宁,王聪琳,裴庆祺,李亚晖,沈玉龙   

  1. 西安电子科技大学计算机学院 西安710071;西安电子科技大学通信工程学院 西安710071;西安电子科技大学通信工程学院 西安710071;中国航空工业计算技术研究所 西安710068;西安电子科技大学计算机学院 西安710071
  • 出版日期:2018-11-16 发布日期:2018-11-16
  • 基金资助:
    本文受航空科学基金(2010ZC31002,2010ZC31001,20101981015)资助

Multiple Security Partition Communication Mechanism Based on MILS CORBA

CUI Xi-ning,WANG Cong-lin,PEI Qing-qi,LI Ya-hui and SHEN Yu-long   

  • Online:2018-11-16 Published:2018-11-16

PDF (PC)

582

摘要: 随着航空电子系统的飞速发展,机载操作系统对保证不同安全关键级别的软件互不影响越来越严格,面对这种情况,多重独立安全级别(MILS)嵌入式操作系统应运而生。MILS架构的中间件层采用实时CORBA技术。同时MILS CORBA架构采用分区通信机制进行通信。为了满足分区通信的安全性和MILS架构对分区密级的严格控制,设计了基于实时CORBA技术的MILS架构的多级安全分区通信机制。提出了将MILS IOP作为实时CORBA的一部分来实现MILS CORBA架构的多级安全分区通信的机制。整个机制保证了不同密级的数据安全独立的传输,同时也了保证系统的整体安全性。

关键词: MILS,实时CORBA,分区通信,多级安全,加密认证

Abstract: With the rapid development of avionics system,the requirement of ensuring different security classification software not to communicate in the avionic operate system is more and more strict.In this case,multiple independent levels of security and safety (MILS) embedded system was proposed.The middleware in MILS is Real-time CORBA (RT CORBA).And MILS CORBA is used partition communication to communicate with each other.In order to meet the security of partition communication and the strict control of the security classification in MILS,the multiple security partition communication in MILS architecture based on RT CORBA was proposed.The mechanism we proposed is that MILS IOP as a part of real-time CORBA can ensure to achieve multiple security partition communication in MILS CORBA.The whole mechanism can ensure that the transmissions among the data of different security classifications are independent.And it also guarantees the security of the whole system.

Key words: MILS,Real-time CORBA,Partition communication,Multiple security,Encryption and authentication

[1] Alves J,Harrison W S,Oman P,et al.The MILS Architecture for High-Assurance Embedded Systems[J].International Journal of Embedded System,2005,2(3/4):239-247
[2] 杨剑锋,等.分布式系统原理与规范[M].北京:清华大学出版社,2001
[3] Boettcher C,Delong R,Rusby J,et al.The MILS Component Integration Approach to Secure Information Sharing[M].IEEE,DASC,2008:1.C.2-1-1.C.2-14
[4] Uchenick G M,Vanfleet W M.Multiple Independent Levels of Safety and Security:High Assurance architecture for MSLS/MLS[C]∥MILCOM 2005.IEEE, 2005:610-614
[5] O’Ryan C,Schmidt D C.The Design and Performance of a Real-time CORBA ORB Endsystem.http://europepmc.org/search/?page=1&query=The+Design+and+ Performance +of+a+ Real-time+CORBA+ORB+Endsystem
[6] Common Object Request Broker Architecture (CORBA) Specification,Version 3.1[S].OMG.2008-01-04
[7] Real-time CORBA Specification,Version 1.2[S].formal/05-01-04,OMG.January 2005
[8] MILS CORBA Protection Profile,Internal Draft 0.52[M].September 2003
[9] ASSAC Phase II Final Draft of Proposed Guidelines for System Issues[J].Security Aspects,2004,6
[10] Alves J-Foss,Harrison S,Oman P.UI MILS-CORBA StudentTeam University of Idaho[R].MILS-CORBA Status Report
[11] Alves-Foss D J,Oman P,Taylor C.Secure Middleware Architecture[M].University of Idaho
[12] High Granular Multi-Level-Security Model for Improved Usability,Dirk Thorleuchter[C]∥2011International Conference on System Science,Engineering Design and Manufacturing Informatization. IEEE,2011
[13] Karuppan A S,et al.A New Robust Distributed Real TimeScheduling services for RT-CORBA Applications[C]∥2008International Conference on Computing,Communication and Networking.IEEE,2008
No related articles found!
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发