高级检索

    进程代数上的抽象安全性质

    Abstract Security Properties in Process Algebra

    • 摘要: 在进程代数框架内基于算子的性质研究抽象安全性质及其偏序关系,定义了复合不变安全性质和可构造安全性质.首先证明进程代数算子在安全性质集是单调衰减算子.根据这一结果证明了复合不变性质和可构造安全性质在安全性质集上的存在性,并且在安全性质集合上证明了安全性质的“木桶原理”,即复合系统的整体安全性不强于系统中最弱的部分.基于安全性质之间的偏序关系,将所谓绝对安全性质与平凡性质联系起来,证明绝对安全性质是一类平凡性质.

       

      Abstract: A theory of abstract security properties is presented in process algebra with abstract security properties defined as special kinds of equivalent classes of processes, that is, the sets of processes that are equally secure. In the context of process algebra, investigation of abstract security properties can be cast into the investigation of the properties of process algebra operators. It proves that partial orders can be defined on the sets of abstract security properties to generate CPOs. Thus the theory of CPOs and fixed-points can be used. An investigation is made into the actions of algebra operators on the sets of abstract security properties. A theorem is given to show that process algebra operators are monotony functions. From the above theorem, (1) compositional invariant security properties and constructive security properties are proved to exist, and (2) security properties are degraded under operators of process algebra, which is known as “bucket principle”, i.e, a composed system cannot be securer than the weakest link of the system. Finally, a formal definition of absolute security property is given, and is associated with trivial properties of processes. A theorem shows that absolute security property is itself trivial property.

       

    /

    返回文章
    返回