Browse > Article

A Safety Verification of the Modified BLP Model using PVS  

Koo Ha-Sung (한서대학교 컴퓨터정보학과)
Park Tae-Kue (한서대학교 컴퓨터정보학과)
Song Ho-Keun (한서대학교 컴퓨터정보학과)
Publication Information
Journal of the Korea Institute of Information and Communication Engineering / v.10, no.8, 2006 , pp. 1435-1442 More about this Journal
Abstract
The ideal method of safety evaluation is to verify results of execution against all possible operations within operating system, but it is impossible. However, the formal method can theoretically prove the safety on actual logic of operating system. Therefore we explain the contents of the art of the safety verification of security kernel, and make a comparative study of various standardized formal verification tools. And then we assigned PVS(Prototype Verification system) of SRI(Stanford Research Institute) to verify the safety of a modified BLP(Bell & LaPadula) model, the core access control model of multi-lavel based security kernel. Finally, we describe formal specification of the revised BLP model using the PVS, and evaluate the safety of the model by inspecting the specification of the PVS.
Keywords
Safety verification; PVS; BLP; Security model;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Andrews, Peter. System Description: TPS: A Theorem Proving System for Type Theory, 2000
2 White, G., Fisch, E., Pooch, U., 'Government- based security standards,' Auerbach Publications Inf. Syst. Secur. (USA), 6권, 3호, pp9-19, 2003
3 박 태규, '보안 리눅스(Secure Lunux) 연구개발 동향,' 情報保護學會誌 pp37-48, 2003
4 한국정보보호진흥원, 국가기관용 등급기반 접근통제보호 프로파일, 2004. 2. 26
5 http://pvs.csl.sri.com/introduction.shtml
6 티에스온넷(주), RedOwl SecuOS Administration Guide, 2004
7 김 의탁 '접근통제 기술 동향,' 通信情報保學會 8권, 4호, pp77-96, 1998
8 Bell. D. and LaPadula., 'Secure Computer System : Mathematical Foundations and Model,' MITRE Report MTR 2547, v2, Nov. 1973