摘要
在移动环境下,节点之间在进行通信时要进行策略的动态协调,而作为典型的动态安全系统框架-Flask,只能用于静态环境中。在研究了Flask框架体系结构的基础上,对其进行改进,使其适合于动态的移动环境。通过在Flask框架结构中加入翻译器组件,并在网络环境中引入协调器(可信第三方)组件,在协调器中将安全策略分为提供策略和授权策略分别进行协调,解决了在移动环境下移动节点间进行通信时的策略动态协调问题。
In mobile environment, the nodes need policy dynamical reconciliation when they communicate with each other, but as a typical dynamic secure operating system Flask is used only in static environment and can not reconcile policy dynamically among the nodes. An improvement of the Flask architecture on the basis of the Flask architecture makes it adapt to mobile environment. A translator and a reconciliation module (trusted third party) in which secure policy reconciliation is divided into provisioning reconciliation and authorization reconciliation are added into the network environment, which solve the problem of dynamic policy reconciliation when nodes communicate with each other in mobile environment.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第4期880-882,896,共4页
Computer Engineering and Design
基金
国家自然科学基金重点项目(60633020)
关键词
安全操作系统
移动环境
Flask框架
可信第三方
策略协调
secure operation system
distributed environment
flask architecture
trusted third party
policy reconciliation