基于抽象和搜索空间划分的安全性判定方法

计算机科学 ›› 2011, Vol. 38 ›› Issue (10): 55-59.

• 计算机网络与信息安全 • 上一篇下一篇

基于抽象和搜索空间划分的安全性判定方法

王昌达,华明辉,周从华,宋香梅,鞠时光

(江苏大学计算机科学与通信工程学院镇江212013)

出版日期:2018-11-16 发布日期:2018-11-16

Security Analysis of Access Control Policy Based on Predicate Abstract and Verification Space Division

WANG Chang-da,HUA Ming-hui,ZHOU Cong-hua,SONG Xiang-mei,JU Shi-guang

Online:2018-11-16 Published:2018-11-16

摘要/Abstract

摘要： 为满足访问控制策略安全性快速判定的要求，提出一种基于谓词抽象和验证空间划分的访问控制策略状态空间约减方法，将在访问控制策略原始状态机模型上的安全性分析工作转移到包含较少状态的抽象模型上，并进一步划分抽象模型的验证空间，以提高效率。理论分析和实验数据均表明，其安全性分析所需的时间和空间都得到有效约减。与传统方法相比，它具有速度更快、自动化程度更高等优点。

关键词: 访问控制，谓词抽象，安全性分析，模型检测，可信评估

Abstract: In order to implement security analysis of access control policy rapidly, predicate abstract with verification space division was presented, i. e. transfer pristine state machine model analysis to abstract state machine model which contains fewer states. Furthermore,verification space division was introduced to decrease the dimensions of model checking. Endorsed by both theoretic analysis and experiment, time and space requirement are effectively reduced. Compared with the known methods,our methodology is more efficiency and less human interacted.

Key words: Access control, Predicate abstract, Security analysis, Model checking, Trust evaluation

王昌达,华明辉,周从华,宋香梅,鞠时光. 基于抽象和搜索空间划分的安全性判定方法[J]. 计算机科学, 2011, 38(10): 55-59. https://doi.org/

WANG Chang-da,HUA Ming-hui,ZHOU Cong-hua,SONG Xiang-mei,JU Shi-guang. Security Analysis of Access Control Policy Based on Predicate Abstract and Verification Space Division[J]. Computer Science, 2011, 38(10): 55-59. https://doi.org/

参考文献

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed

基于抽象和搜索空间划分的安全性判定方法

Security Analysis of Access Control Policy Based on Predicate Abstract and Verification Space Division

PDF (PC)

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 0

Metrics

本文评价

推荐阅读 0