| 主动授权规则实施支持空间特性的RBAC* |
| |
| 引用本文: | 汤铸,鞠时光,陈伟鹤.主动授权规则实施支持空间特性的RBAC*[J].计算机应用研究,2010,27(4):1496-1499. |
| |
| 作者姓名: | 汤铸 鞠时光 陈伟鹤 |
| |
| 作者单位: | 江苏大学,计算机科学与通信工程学院,江苏,镇江,212013 |
| |
| 基金项目: | 江苏大学高级人才启动基金资助项目(07JDG031) |
| |
| 摘 要: | 为满足安全策略或者角色定义的变化,系统或模型应该提供一种灵活的机制实施支持空间特性的RBAC。引入了OITE(on-if-then-else)主动授权规则实施支持空间特性的RBAC,定义了支持空间特性的RBAC中各基本元素与OITE之间的映射关系。使用OITE作为实施机制,可以在不同粒度上实施带有空间特性角色约束,并且可以将支持空间特性的RBAC应用在多个领域中。最后简要讨论了授权规则如何从支持空间特性的RBAC安全策略中自动产生。
|
| 关 键 词: | 安全策略 角色 主动授权规则 带有空间特性角色约束 |
Active authorization rules for enforcing RBAC with spatial characteristics |
| |
| TANG Zhu,JU Shi-guang,CHEN Wei-he.Active authorization rules for enforcing RBAC with spatial characteristics[J].Application Research of Computers,2010,27(4):1496-1499. |
| |
| Authors: | TANG Zhu JU Shi-guang CHEN Wei-he |
| |
| Affiliation: | School of Computer Science & Telecommunication Engineering/a>;Jiangsu University/a>;Zhenjiang Jiangsu 212013/a>;China |
| |
| Abstract: | To meet security policy or role structure changes, systems or models should provide a flexible mechanism for enforcing role-based access control (RBAC) with spatial characteristics in a seamless way. This paper used on-when-then-else authorization rules for enforcing RBAC with spatial characteristics. And showed the mapping between the basic elements in RBAC with spatial characteristics and the OWTE rule specification. Established OWTE rules as an enforcement mechanism, which could realize role-based constraints with spatial characteristics at different granularities and make RBAC with spatial characteristics usable in diverse domains. Finally discussed briefly how these authorization rules could be automatically generated from security policies using RBAC with spatial characteristics. |
| |
| Keywords: | security policy role active authorization rules role-based constraints with spatial characteristics |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
