Descriptions and Negotiation Models of Security Policies

安全策略描述及协商模型

• 批准号: 12133205
• 负责人: SHIBAYAMA Etsuya
• 金额: $ 20.61万
• 依托单位: Tokyo Institute of Technology
• 依托单位国家: 日本
• 项目类别: Grant-in-Aid for Scientific Research on Priority Areas
• 财政年份: 2000
• 资助国家: 日本
• 起止时间: 2000 至 2003
• 项目状态: 已结题
• 来源: https://kaken.nii.ac.jp/en/grant/KAKENHI-PROJECT-12133205/
• 关键词: security policy; Security automaton; Grid computing; Virtual machine; Communication library; Integrity check; Language processor; Debugging; Grid; 仮想マシン; バイトコード変換; クラスタ計算; 可用性; Java; 分散共有メモリ; 耐故障性; チェックポイント; バイトコード処理系; 情報流; 耐故障; クラスタ

As a first step to building next generation secure information infrastructures, we have investigated the following three areas, representing three different viewpoints : descriptions, users, and systems.1. Flexible Security Policy Description Schemes and Their Enforcement Mechanisims Taking account that mutual ly untrusted parties may have to collaborate or do trade with one another in the Internet era, we propose a new model of security policy that is compatible with privacy protections. Our research results include a model of policy negotiation using at tribute authentications, description schemes based upon security automata, an enforcement mechanism with instrumentation, and optimization with partial evaluations.2. Convenient Methodologies for Constructions and Operations of Secure Software Systems We propose (semi-) automated construct ions and operations of secure software systems by developers, operators, and end-users. Our research results include automatic exploitations of security policies from information of package managers, semi-automated constructions of secure programuing language processors, development environments of secure software including a visual language system and a debugger.3. Foundations of Next Generation Information Infrastructures We propose various security mechanisms for computing systems utilizing massive resources. Our research results include a fault-tolerant and high performance communication library, a scalable authentication algorithm, a remote installation and recovery tool for PC clusters, a virtual machine technology for the resolution of interference among virtual organizations.

作为建立下一代安全信息基础设施的第一步，我们调查了以下三个领域，代表了三种不同的观点：描述、用户和系统1。灵活的安全策略描述方案及其执行机制考虑到在互联网时代，相互不可信任的各方可能不得不相互协作或进行交易，我们提出了一种新的与隐私保护兼容的安全策略模型。我们的研究成果包括基于属性认证的策略协商模型、基于安全自动机的描述方案、带工具的执行机制和带部分评估的优化。安全软件系统的构建和操作的便捷方法我们建议由开发人员、运营商和最终用户(半)自动地构建和操作安全软件系统。我们的研究成果包括从包管理器的信息中自动开发安全策略、安全编程语言处理器的半自动构建、安全软件的开发环境(包括可视化语言系统和调试器)。下一代信息基础设施的基础我们为利用大量资源的计算系统提出了各种安全机制。我们的研究成果包括容错高性能通信库、可扩展的认证算法、PC集群的远程安装和恢复工具、解决虚拟组织间干扰的虚拟机技术。

项目成果

E.Shibayama et al.: "AnZenMail : A Secure and Certified E-Mail System"Lecture Notes in Computer Science, Springer-Verlag. 2609. 201-216 (2003)

E.Shibayama 等人：“AnZenMail：安全且经过认证的电子邮件系统”计算机科学讲义，Springer-Verlag。

E.Shibavama A.Yonezawa: "Secure Software Infrastructure in the Internet Age"New Generation Computing. 21・2. 87-106 (2003)

E.Shibavama A.Yonezawa：“互联网时代的安全软件基础设施”21・2（2003 年）。

T.Sasou, S.Matsuoka, O.Tatebe: "An Efficient LINPACK Algorithm for Heterogeneous Clusters (in Japanese)"Proc. of Joint Symposium on Parallel Processing. 71-78 (2002)

T.Sasou、S.Matsuoka、O.Tatebe：“异构集群的高效 LINPACK 算法（日语）”Proc。

Y.Takamiya, S.Matsuoka: "Towards MPI with User-Transparent Fault Tolerance (in Japanese)"Proc. of Joint Symposium on Parallel Processing. 217-224 (2002)

Y.Takamiya、S.Matsuoka：“迈向具有用户透明容错功能的 MPI（日语）”Proc。

柴山悦哉: "社会基盤としての安全なメールシステム"科学. 74・2. 178-184 (2004)

Etsuya Shibayama：“作为社会基础设施的安全电子邮件系统”《科学》74・2。