| With the popularizing of computer and network technologies, the security of information has become a crucial component of state safety which has essential influence on the national economy and the people's livelihood. Further more, as the basic of the whole information system's security, secure OS has become a research hotspot of computer science. On the other hand, secure OS is mainly manually tested nowadays. Manual testing is time costly, subjective and absolutely relying on operaters' experience. So, it is emergent for us to do research on automatic testing now.Concentrating on the theory and implementation of least privilege, this paper researchs into some key technologies of secure OS's development and automatic testing based on the developing of an actual security enhancing system and an automatic testing system. At first, a serial mended design is proposed on the basis of analyzing the existing security and privilege inheriting model and their essential. Then, a signature technology based cross authorization is proposed after actuality and practical requirements of privilege distribution is analyzed. Next, this paper discussed the development of secure OS, and realized previous discussed models with LKM. Finally, this paper analyzed and discussed method of automatic testing of secure OS, designed and realized automatic security testing on the previous developed least privilege enhancing system.Concentrating on least privilege and its automatic testing, this paper and its designing and developing has provided technology and practice of full-scale secure OS design, development and automatic testing. |
PDF Full Text Request