| In recent years, with the development of national economy and social informationization, more and more information has been digitally stored instead of being in paper. The information, therefore, can be obtained from the information system on the Internet easily. However, how to ensure the security of these information and protect them from illegal access or tampering is a problem which cannot be ignored.Access control is an important way to ensure information security. This thesis considers the requirements of an actual railway information system, which must satisfy the demand of the information security grade protection level4. According to the system above, we proposed to apply the mandatory access control model-BLP model to design and implement a mandatory access control system in the gateway device.This thesis aims to propose and implement a mandatory access control system for application security. In the system, security label is used to identify the security level of different system resources and users in order to make users access the information in the system more safely. Furthermore, the security label can ensure users to access the system with minimum permissions and then prevent unauthorized operation from non-authorized users. Therefore, the reliability of the business operations, the integrity of business process, and the security of business data can all be guaranteed. |
PDF Full Text Request