中文摘要：

TCB（trusted computing base）完整性保护对于计算机系统安全具有十分重要的意义,目前的静态度量方法并不完善,而动态度量方法还很不成熟,因而提出一种基于策略的分析方法来分析系统TCB和域TCB的完整性.这一方法将系统策略文件中的描述解析成信息流形式,然后再将其抽象为有向图形式,最后利用图论中的方法分析信息流情况,给出完整性破坏的信息流传播路径.此方法的思想可以用在任何通过执行某些操作会产生信息流的环境中.根据这一方法,开发了一个原型工具,并以SELinux操作系统为例进行了实验分析.实验表明它能分析策略中的信息流向,并能实时给出策略违反图.此方法和工具可以作为现有完整性度量方法的有效补充.

英文摘要：

TCB integrity protection is of great significance.The static measurement method is not perfect,and the dynamic measurement method is still immature,so a policy-based method to analyze the integrity of the system TCB and domain TCB is proposed.This method parses the system policy file into the form of information flow,and then abstracts it out into the form of directed graph.At last the information flow of the graph is analyzed using graph theory,and the information flow propagation path of the integrity violation is given.The idea of this method can be used in any situations where performed operations will produce information flow.Based on this method,aprototype tool is developed.In the experiment,the integrity of TCB in the SELinux operation system is studied.The experiment indicates that the tool can analyze the information flow of the policy file,and give the policy violation graph in real time.This method and tool can be an effective complement of existing integrity measurement methods.