主题：开个帖作为学术翻译问题请教专帖 -- 冰与火

这次把中英文版一起贴出来

In this paper, we develop a new formal security theory for trusted information systems. Different from traditional system protection models, such as access control matrix model, this theory describes the operations in system by functions of random variable vectors, build an analysis model of trusted system with three axioms, and analyze the information flow in the system by tracing the operation sequence of the system. We will demonstrate that with this model, the security state of system can be expressed as the security attributes of information flows from input port to output port, propose strict definitions of normal information channel, covet channel and security policy, prove two theorem of security attributes of information flow, and give a dynamic planar multi layer mandatory access control model which designed for confidentially and integrity.

This theory gives a Shannon style information flow model for security of trusted systems.

本文提出了一个新的可信系统形式化安全理论。与访问控制矩阵模型等传统的保护系统模型不同，这一理论用随机变量向量的函数来描述系统操作，基于三条公设建立了可信系统的分析模型，并通过对系统操作序列的跟踪来分析系统中的信息流。我们说明了在这一模型中,系统安全状态可表示为输入端口和输出端口之间的信息流的安全属性，给出了正常信息通道、隐通道和安全策略的严格定义，证明了关于信息流安全属性的两条定理，并基于这一理论给出了一个保密性和完整性相结合的动态二维多级强制访问控制模型。这一理论对可信系统的安全给出了一个香农信息论式的模型解释。