Design of a Modified BLP Security Model and Its Application to SecLinux
一个修改BLP安全模型的设计及在SecLinux上的应用

In this paper, a MBLP (modified BLP) security model is presented which is PAC (privileged access control) oriented. Some concepts such as role management, domain compartment, limitation of covert channels and defence of viruses, are introduced. MBLP is applied to SecLinux, which is a self-developed secure operating system the authors.