中文摘要：

本文提出了一种基于可信状态的多级安全模型,它以BLP模型为基础,引入可信度和可信状态测量函数,利用可信计算平台的完整性测量、存储和报告功能,检测进程和被访问对象的可信状态,并针对不同类型访问对象,动态调节进程访问范围,提高模型的抗攻击能力.文中说明了模型的基本设计思想,形式化描述和可信状态转换过程,证明执行新规则后系统仍然处于安全状态.最后,本文还介绍了模型在操作系统内核的实施框架,及其实现性能分析.

英文摘要：

This paper proposes a multilevel security model based on trustworthy state, which introduces the concept of reliability and the function of integrity measurement. It enforces diverse security rules to different kinds of objects. To prevent nmning intrusions, the access ranges of subjects are adjusted according to their reliabilities. The formal description of the model and the transform of its trustworthy states are given in the paper. It is proved that the system remains in a secure state after performing the security rules of the new model. Moreover, its realizing framework in operating system kemel is described, and its performance is analyzed.