%0 Journal Article
%T Fine-grained protection domain model in a process and its implementation<br>进程内细粒度保护域模型及其实现
%A WANG Zhi-qiang
%A HUANG Hao
%A XIA Lei
%A <br>王志强
%A 黄皓
%A 夏磊
%J 计算机应用
%D 2007
%I 
%X A fine-grained protection domains method was proposed to address the problem of dynamically changing a process's capabilities. According to a process's different access mode of its address space and system resources in its different executing phases, this model partitions it into multiple protection domains. Then it sets up access mode of address space for each of them, which makes it feasible to resist code injection attacks. Meanwhile, it integrates Mandatory Access Control (MAC) framework into it to provide the access control of system resources, which meets the security requirement of the system.
%K protection domain
%K access control
%K flask security architecture
%K information security<br>保护域
%K 访问控制
%K flask安全体系结构
%K 信息安全
%K 细粒度
%K 保护域
%K 域模型
%K implementation
%K process
%K model
%K domain
%K 安全策略
%K 实施
%K 强制访问控制框架
%K 资源访问
%K 系统资源
%K 注入
%K 代码
%K 用户态
%K 防御
%K 设置
%K 划分
%K 访问方式
%K 地址空间
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=831E194C147C78FAAFCC50BC7ADD1732&aid=14E16CBD274305126934FD65DC8E05C8&yid=A732AF04DDA03BB3&vid=DB817633AA4F79B9&iid=B31275AF3241DB2D&sid=37E1CFF130ACDBB2&eid=D98C4F25072149E5&journal_id=1001-9081&journal_name=计算机应用&referenced_num=0&reference_num=8