Approaches For Testing Application Security Support Of Operating System

With the continuous expansion of the computer technology in various industries,various fields of social life have put forward higher requirements for the security performance of the operating system.As the basic software for running all application programs,the operating system needs to ensure that it can provide a stable and reliable operating environment for the application programs,and the system should also provide various application support for the application programs.Designing and developing a set of automated testing components to implement the tests supported by operating system applications is of great significance for ensuring the security of operating systems.According to the test requirements for application security support in the existing operating system evaluation standards,some of the test content can be divided into three categories: application interface support detection,application security protection measure detection and application program access control detection.Combined with the relevant testing standards of the safety operating system and the characteristics of the safety information system,analyze the function points that various test items should be tested,and design the operating system application to support automated testing tools.Including file transfer,application interface support,application security protection mechanism and program access control test module.The application interface support test is mainly for the identity authentication interface,audit development interface,and file system call interface;the application security protection mechanism test also includes the test of the program's independent operating environment;the program access control test includes the application's autonomous access to the file and forced access The test of the control mechanism is divided into the file read and write execution permission identifier and the access control list mechanism,as well as the test of type enforcement strategy and multi-level security strategy.According to the above content,design the test process and automated test plan,and implement a set of components suitable for operating system application security to support automated testing.Test and verify the existing Kylin operating system to check whether the system meets the safety functions required by the standard.The results show that the test component can complete the test of operating system application support.