关键词: 安全操作系统设计 安全文件系统 半形式化 功能规范

Abstract:

The theory and application of formal or partial-formal specification are the key to designing high-level secure operating systems, However, the founda tion and experience of designing formal high-level secure operating systems in our country are deficient, and no practical development process and relat  ive design principle are available. In this paper, using the rule-set modeling proposed by Lapadula, we introduce a method and its process to develop th   e top specification of a secure file system NeoFs based on the Linux system invocation.

Key words: secure operating system design secure file system parl-forrnalizaiton function specification