摘要 |
PROBLEM TO BE SOLVED: To optimize the size of a security policy of a secure OS. SOLUTION: A security policy optimizing method is provided with: a first step for receiving a selective input of permission which is unnecessary for a user from a general security policy, invalidating access check of the secure OS concerned with the selectively input permission and deleting setting including the permission from the general security policy; a second step for referring to relation setting of a domain and a program included in the general security policy and deleting setting concerned with unnecessary domains which are not used in a transferred apparatus from the general security policy, and a third step for referring to relation setting of the label and resource included in the general security policy extracting a label corresponding to a resource which does not exist in the transferred apparatus as an unnecessary label and deleting the setting concerned with the unnecessary label from the general security policy. COPYRIGHT: (C)2009,JPO&INPIT |