关键词: 安全操作系统;动态安全策略;权限撤销

Abstract:

In this paper a revocation mechanism based on VTC and in-progress cross list was presented. The revocation is implemented by checking the validation and the timestamp of permissions and a two-way searching on the in-progress cross list on L4 microkernel. Experimental results show that the mechanism is effective and only increases approximately 1% system overhead.