ISCAS OpenIR  > 基础软件国家工程研究中心
semantic remote attestation for security policy
Qian Zhang; Yeping He; Ce Meng
2010
会议名称semantic remote attestation for security policy
页码40551
会议日期2010
会议地点Seoul
ISBN978-1-4244-5941-4
部门归属Inst. of Software, Chinese Acad. of Sci., Beijing, China
摘要In the software environment with security policy enforced, the behavior of application depends on not only its binary code, but also the enforcing security policy. Therefore, remote attestation for security policy is as important as that for binary code. However, since the specialties of security policy, which include more mutable and mixture of semantics, it is not suitable to use integrity measurement as the evidence to verify trustworthy of security policy. In this paper, we propose a novel semantic approach to remote attest security policy. This approach utilizes policy analysis technique to extract semantics from security policy, and utilizes logical programming to query required semantics from the mixture of semantics in security policy. We design and implement this approach on SELinux policy in this paper and discuss the security of this implementation on the basis of verified trust of TCB.
关键词Selinux Policy Appraoch Binary Code Logical Programming Policy Analysis Technique Query Security Policy Semantic Remote Attestation Linux Logic Programming Query Processing Security Of Data
内容类型会议论文
URI标识http://ir.iscas.ac.cn/handle/311060/8898
专题基础软件国家工程研究中心
推荐引用方式
GB/T 7714
Qian Zhang,Yeping He,Ce Meng. semantic remote attestation for security policy[C],2010:40551.
条目包含的文件
文件名称/大小 文献类型 版本类型 开放类型 使用许可
semantic remote atte(268KB) 开放获取--请求全文
个性服务
推荐该条目
保存到收藏夹
查看访问统计
导出为Endnote文件
谷歌学术
谷歌学术中相似的文章
[Qian Zhang]的文章
[Yeping He]的文章
[Ce Meng]的文章
百度学术
百度学术中相似的文章
[Qian Zhang]的文章
[Yeping He]的文章
[Ce Meng]的文章
必应学术
必应学术中相似的文章
[Qian Zhang]的文章
[Yeping He]的文章
[Ce Meng]的文章
相关权益政策
暂无数据
收藏/分享
所有评论 (0)
暂无评论
 

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。