| TRDM--具有时限的基于角色的转授权模型 |
| |
| 引用本文: | 孙波,赵庆松,孙玉芳.TRDM--具有时限的基于角色的转授权模型[J].计算机研究与发展,2004,41(7):1104-1109. |
| |
| 作者姓名: | 孙波 赵庆松 孙玉芳 |
| |
| 作者单位: | 中国科学院软件研究所,北京,100080;北京中科红旗软件有限公司,北京,100086 |
| |
| 基金项目: | 国家"八六三"高技术研究发展计划项目(863-306-ZD12-14-2);国家自然科学基金项目(60073022);中国科学院知识创新工程项目(KGCX1-09) |
| |
| 摘 要: | 当前基于角色的系统的完全依赖于管理者的集中式管理方式,不能够满足分布环境下的系统管理的需求.基于角色的转授权模型(role—based delegation model,RDM)更适于分布式环境的授权管理,但当前的几种授权模型都不支持时限(temporary)和授权宽度.基于时限和授权宽度等方面,对RDM2000(role-based delegation model 2000)模型进行了扩充,提出了完备的具有时限的基于角色的转授权模型(ternporal role—based delegation model,TRDM),并提出了新的基于TRDM的角色授权和角色撤销(revocation)机制.
|
| 关 键 词: | 信息安全 访问控制 转授权 时限 基于角色 |
TRDM-Temporal Role-Based Delegation Model |
| |
| SUN Bo,ZHAO Qing-Song,and SUN Yu-Fang.TRDM-Temporal Role-Based Delegation Model[J].Journal of Computer Research and Development,2004,41(7):1104-1109. |
| |
| Authors: | SUN Bo ZHAO Qing-Song and SUN Yu-Fang |
| |
| Abstract: | It's the system manager with authorization role who handles assignments of users to roles in role-based systems. However,the central management,which fully depends on the manager,isn't suitable for distributed environments. Role-based delegation model (RDM) is more suitable for distributed environments. But current role-based delegation models don't support temporal delegation and delegation width. A temporal role-based delegation model called TRDM is presented,which is an extension of RDM2000 by supporting temporal delegation and delegation width. New mechanisms of role delegation and role revocation are explored,which is based on TRDM. |
| |
| Keywords: | information security access control delegation temporal role-based |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
