基于策略的域间访问控制和信息流控制框架

随着互联网及其相关技术的发展，多域环境下的资源共享越来越普遍。域间的资源共享给域间合作带来了便利的同时也带来了安全问题。其中两个关键安全问题是跨域访问控制和跨域信息流控制。本文针对典型的跨域资源共享系统的安全需求，提出了基于策略的跨域访问控制与信息流控制框架。框架包括了授权和访问控制体系结构、授权策略模型、用于生成和维护授权策略的协议和算法、 用于表示和分析跨域信息流的信息流图和用于控制跨域信息流的机制。主要贡献具体体现在以下几个方面： 1）框架的提出使得安全互操作可以以一种无策略协调器的方式进行。在对资源共享进行控制的现有方案中， 其安全互操作都是以基于中心协调器的方式进行，存在如下问题：中心协调器会成为仲裁域间资源共享的瓶颈；有时很难找到一个可信的第三方来持有中心协调器。框架通过以一种无策略协调器的方式使得这些问题得到解决。首先，框架给出一个分布式跨域授权策略模型；根据此模型，跨域策略被分布到每个域，而每个域所保留的策略对于安全违反检测以及资源的访问判定来说是可靠的和完备的。其次，框架给出了协议和算法以在域初始建立合作时生成这样的跨域授权策略，并给出了跨域策略变更的协议和算法。其中，跨域授权策略初始建立与变更过程中的安全违反检测可以在单个域本地进行 — 也就是说, 每个域检查是否有对其自身的安全违反并引导协商以去除违反；对一个域的资源的访问判定由此域自身来确定（根据其保留的策略）。 2）框架给出了一个渐进的策略变更方案。此方案只涉及与策略变更相关的域，并且只涉及到与策略变更相关的策略。在多种情况下，变更不会带来任何安全违反或者只会带来某种类型的安全违反。如果存在任何安全违反，此安全违反也是被限定在相关策略范围内。此方案适合策略变更频繁的动态环境。 3）框架给出了一种面向多域资源共享的信息流控制方案。该方案面向采用了基于角色访问控制（RBAC）策略和单向角色映射的多域环境。方案给出了如何用信息流图来表示和分析跨域信息流的方法。根据与信息扩散相关的需求，给出域内信息安全和域间信息安全的概念。域可以定义域内和域间信息安全需求以控制信息扩散。而且给出了角色划分、角色激活上的限制、角色映射激活上的限制等措施来满足由域定义的需求。

多级安全OS与DBMS模型的信息流及其一致性分析

数据库安全与操作系统安全密不可分,如果多级安全DBMS的安全策略不违反OS的安全策略,那么可以使用多级安全OS的安全机制来实现DBMS的部分安全功能,如强制访问控制.信息流分析使我们能更好地理解安全策略的意义和内容.该文给出了多级安全OS模型和以该模型为基础的多级安全DBMS模型,首次详细分析了它们在强制访问控制策略下的信息流集合.经过主客体的映射后,证明了数据库与操作系统的信息流集合是一致的,这个结论保证了利用OS的机制来实现DBMS的强制访问控制的合理性.

基于信息流的可信操作系统度量架构

将信息流和可信计算技术结合,可以更好地保护操作系统完整性.但现有的可信计算度量机制存在动态性和效率方面的不足,而描述信息流的Biba完整性模型在应用时又存在单调性缺陷.本文将两者结合起来,基于Biba模型,以可信计算平台模块TPM为硬件信任根,引入信息流完整性,并提出了可信操作系统度量架构:BIFI.实验表明,BIFI不仅能很好地保护信息流完整性,而且对现有系统的改动很少,保证了效率.

基于授权策略的RBAC信息流控制

RBAC没有明确定义非法信息流，也没有提供信息流控制机制．RBAC系统中主体的访问操作 可以引起客体之间的信息流，使用户访问到未授权的信息．首次从授权策略的角度形式化地定义了 RBAC非法信息流，提出了一个检测RBAC配置中用户可以引起的非法信息流的算法，给出了一个动态 信息流控制算法．确保了RBAC访问控制目标的实现，增强了RBAC系统的安全性．

带敏感标签的SELinux安全策略信息流分析方法

针对SELinux操作系统中多安全策略的实现方式,文中在信息流分析方法的基础上引入了多级安全敏感标签,以自动机与线性时态逻辑为理论基础,提出了一种改进的信息流分析方法,对SELinux安全策略的完整性与机密性进行验证.

船载综合信息显示系统半实物仿真设计与实现

针对船载综合信息显示系统在实体船舶内开发不方便的问题,提出了一种半实物仿真系统的设计与实现方法。结合"科学三号"海洋科学考察船的综合信息显示系统的设计和开发过程,从体系结构、信息流程和实现方法3个方面对半实物仿真系统的设计和实现过程进行了探索。实践结果表明,这种半实物仿真系统一方面可以为实际系统的体系结构、信息流程设计提供支持,另一方面可以为实际系统应用软件的开发提供较为真实的环境,有效的缩短开发时间和降低开发风险。

供应链中物流及信息流管理

供应链管理使企业在变化的市场环境中有效地与其它企业合作 ,取得集体竞争优势。本文首先讨论了后勤学与供应链管理的定义和之间的关系。本文认为供应链管理的核心是物流与信息流的控制。物流控制决策主要包括操作层次的库存补充和运输路径规划 ,以及战略层次的设施地点规划。信息流管理跨越部门与企业的界限将相关的应用集成起来。动态联盟协调各企业内部的生产经营活动 ,战略性地决定物流与信息流的构形。

基于IDEF&UML的生产过程管理系统的建模研究

提出了IDEF与UML两者结合的系统建模方法,能够有效地避免IDEF对信息过程流建模和UML语义描述精确性及使用灵活性的不足.该方法采用IDEF0进行系统功能建模,用IDEF1x和UML模型进行信息建模和面向对象的软件系统设计.用该方法设计的沈阳某冶金设备有限公司的基于组件的生产过程管理系统模型具有良好的维护性、可扩展性和重用性,证明了该方法的可行性.

城市发展与地质环境相互作用机制及数量分析—北海市可持续发展战略研究

Based on a viewpoint of an intricate system demanding high, this thesis advances a new concept that urban sustainable development stratagem is a high harmony and amalgamation among urban economy, geo-environment and tech-capital, and the optimum field of which lies in their mutual matching part, which quantitatively demarcates the optimum value field of urban sustainable development and establishes the academic foundation to describe and analyze sustainable development stratagem. And establishes a series of cause-effect model, a analysissitus model, flux model as well as its recognizing mode for urban system are established by the approach of System Dynamics, which can distinguish urban states by its polarity of entropy flows. At the same time, the matter flow, energy flow and information flow which exist in the course of urban development are analyzed based on the input/output (I/O) relationships of urban economy. And a new type of I/O relationships, namely new resources-environment account, are established, in which both resource and environment factors are considered. All above that settles a theoretic foundation for resource economy and environment economy as well as quantitative relationships of inter-function between urban development and geoenvironment, and gives a new approach to analyze natinal economy and urban sustainable development. Based on an analysis of the connection between resource-environmental construct of geoenvironment and urban economy development, the Geoenvironmental Carrying Capability (GeCC) is analyzed. Further more, a series of definitions and formula about the Gross Carrying Capability (GCC), Structure Carrying Capability (SCC) and Impulse Carrying Capability (ICC) is achieved, which can be applied to evaluate both the quality and capacity of geoenvironment and thereunder to determine the scale and velocity for urban development. A demonstrative study of the above is applied to Beihai city (Guangxi province, PRC), and the numerical value laws between the urban development and its geoenvironment is studied by the I/O relationship in the urban economy as following: · the relationships between the urban economic development and land use as well as consumption of underground water, metal mineral, mineral energy source, metalloid mineral and other geologic resources. · the relationships between urban economy and waste output such as industrial "3 waste", dust, rubbish and living polluted water as well as the restricting impact of both resource-environmental factors and tech-capital on the urban grow. · Optimization and control analysis on the reciprocity between urban economy and its geoenvironment are discussed, and sensitive factors and its order of the urban geoenvironmental resources, wastes and economic sections are fixed, which can be applied to determine the urban industrial structure, scale, grow rate matching with its geoenvironment and tech-capital. · a sustainable development stratagem for the city is suggested.

汉语口语句子产生中语义和语音信息的水平流动

As Levelt and Meyer (2000) noted, because studies of lexical access during multiword utterances production such as phrases and sentences, they raise two novel questions which studies of single word production do not. Firstly, does the access of different words in a sentence occur in a parallel or a serial fashion? Secondly, does the access of the different words in a sentence occur in an interactive or a discrete fashion? The latter question concerns the horizontal information flow (Smith & Wheeldon, 2004), which is a very important aspect of continuous speech production. A variant of the picture–word interference paradigm combining with eye-tracking technique and a dual task paradigm was used in 7 experiments to investigate the horizontal information flow of semantic and phonological information between nouns in spoken Mandarin Chinese sentences. The results suggested that: 1. Before speech onset, semantic information of different words accross the whole sentence has been activated, while phonological activation has been limited within the first phrase of the sentence. 2. Before speech onset, speaker will look ahead and check the semantic information of latter words as the first noun is beening processed, such looking ahead for phonological information can just occur within the first phrase of the sentence. 3. After speech onset, speaker will concentrate on the content words beyond the first one and will check the semantic information of other words with the same sentence. 4. The result suggested that the lexical accesses of multiple words during spoken sentence production are processed in a partly serial and partly parallel manner and stands for the Unit-by-Unit and Incremental view proposed by Levelt (2000). 5. The horizontal information flow during spoken sentence production is not an automatic process and is constrained by cognitive resource.

Characterization of Air-Water Two-Phase Vertical Flow by Using Electrical Resistance Imaging

The characterization of air-water two-phase vertical flow in a 12 m flow loop with 1.5 m of vertical section is studied by using electrical resistance tomography (ERT). By applying a fast data collection to a dual-plane ERT sensor and an iterative image reconstruction algorithm, relevant information is gathered for implementation of flow characteristics, particularly for flow regime recognition. A cross-correlation method is also used to interpret the velocity distribution of the gas phase on the cross section. The paper demonstrates that ERT can now be deployed routinely for velocity measurements and this capability will increase as faster measurement systems evolve.

The kinetic-theory for dilute solid liquid 2-phase flow

On the basis of a brief review of the continuum theory for macroscopic descriptions and the kinetic theory for microscopic descriptions in solid/liquid two-phase flows, some suggestions are presented, i.e. the solid phase may be described by the Boltzmann equation and the liquid phase still be described by conservation laws in the continuum theory. Among them the action force on the particles by the liquid fluid is a coupling factor which connects the phases. For dilute steady solid/liquid two-phase flows, the particle velocity distribution function can be derived by analogy with the procedures in the kinetic theory of gas molecules for the equilibrium state instead of being assumed, as previous investigators did. This done, more detailed information, such as the velocity probability density distribution, mean velocity distribution and fluctuating intensity etc. can be obtained directly from the particle velocity distribution function or from its integration. Experiments have been performed for dilute solid/liquid two-phase flow in a 4 x 6 cm2 sized circulating square pipe system by means of laser Doppler anemometry so that the theories can be examined. The comparisons show that the theories agree very well with all the measured data.

Measurements of Flow Patterns and Velocities of Gas -Water Two -Phase Flows Using Electrical Resistance Imaging

This paper presents a measurement of flow patterns and flow velocities of gas-water two-phase flows based on the technique of electrical resistance tomography (ERT) in a 40m horizontal flow loop. A single-plane and dual-plane ERT sensor on conductive ring technique were used to gather sufficient information for the implementation of flow characteristics particularly flow pattern recognition and air cavity velocity measurement. A fast data collection strategy was applied to the dual-plane ERT sensor and an iterative algorithm was used for image reconstruction. Results, in respect to flow patterns and velocity maps, are reported.

Information Preservation (IP) Method in Simulation

This paper reviews firstly methods for treating low speed rarefied gas flows: the linearised Boltzmann equation, the Lattice Boltzmann method (LBM), the Navier-Stokes equation plus slip boundary conditions and the DSMC method, and discusses the difficulties in simulating low speed transitional MEMS flows, especially the internal flows. In particular, the present version of the LBM is shown unfeasible for simulation of MEMS flow in transitional regime. The information preservation (IP) method overcomes the difficulty of the statistical simulation caused by the small information to noise ratio for low speed flows by preserving the average information of the enormous number of molecules a simulated molecule represents. A kind of validation of the method is given in this paper. The specificities of the internal flows in MEMS, i.e. the low speed and the large length to width ratio, result in the problem of elliptic nature of the necessity to regulate the inlet and outlet boundary conditions that influence each other. Through the example of the IP calculation of the microchannel (thousands long) flow it is shown that the adoption of the conservative scheme of the mass conservation equation and the super relaxation method resolves this problem successfully. With employment of the same measures the IP method solves the thin film air bearing problem in transitional regime for authentic hard disc write/read head length ( ) and provides pressure distribution in full agreement with the generalized Reynolds equation, while before this the DSMC check of the validity of the Reynolds equation was done only for short ( ) drive head. The author suggests degenerate the Reynolds equation to solve the microchannel flow problem in transitional regime, thus provides a means with merit of strict kinetic theory for testing various methods intending to treat the internal MEMS flows.