微内核完整性保障研究与应用.pdf

36 1 V o l. 36 N o. 1 2009 1 Computer Science J an. 2009 ( 南京大学计算机科学与技术系 软件新技术国家重点实验室 南京210093) 为了避免安全操作系统中访问控制机制被篡改绕过 提出利用微内核多服务 结构为安全核完整性提供保 障微内核提供的进程隔离和消息传递机制使得各个服务进程独立运行 通过受控的消息机制进行交互 有效保证了 各个模块的完整性微内核结构的简单性和模块化为形式化验证奠定了基础原型系统 Nuto s 利用F lask 安全体系 结构为用户提供灵活多策略的强制访问控制 由微内核多服务 结构为F lask 中的安全服务 和引用监控 提供完 整性保障 确保安全策略的正确实施 完整性 安全保障微内核多服务 结构 进程隔离 消息通信 Integrity Assurance of Microkernel Operating System and its Application Y U Shuying H U A NG Hao LI U Guobin ( St at e K ey L aborat ory f or N ov el S oft w are T echn ol ogy D epart ment of C om put er Sci ence and T ech nology N anjin g U niv ers ity N anjing 2 10093 China) Abstract T o av oid the security m ech anism applied in op erating system s being byp assed o r tamper ed this pap er pro posed the u se of m icrokernel multiserv er a rchitectur e to assur e the int eg r ity of security ker nel. Pr ocess isolatio n and m essag e passing pr ovided by the m icrokernel m ake t he processes abo ve isolated and pr otect the integ rit y of them eff ec t ively. Simplicity and modular ity the most obviou s advantag es o f m icroker nel laid an ex cellent b ase f o r the futur e f or m al ver if icatio n. T he prot oty pe op erat ing system Nutos w as present ed as an ex ample on how to u se these m ech anism s to enf or ce secur ity . It co mbined the multiserver architecture and the Flask secur ity infrastru cture to pro vide f or flex ibi lit y in secur ity po licies and int eg r ity assurance f o r secur ity sev er and r ef erence mo nitor . Keywords