| 数据库访问控制模型分析 |
| |
| 引用本文: | 蒋赟赟,吴承荣,张世永.数据库访问控制模型分析[J].计算机工程与应用,2002,38(13):183-185,194. |
| |
| 作者姓名: | 蒋赟赟 吴承荣 张世永 |
| |
| 作者单位: | 复旦大学计算机科学系,上海,200433 |
| |
| 摘 要: | 综合分析比较了几种数据库访问控制模型:自主访问控制(DAC),强制访问控制(MAC)和基于角色访问控制(RBAC)。DAC主要根据访问者身份或访问者所属工作组来进行访问控制,MAC是基于被访问信息的敏感程度,而RBAC则是控制对象角色,而不是个人。通过具体模型分析,可以得出尽管RBAC模型仍有些局限,但RBAC模型与传统访问控制模型相比更具优异性,并会在复杂环境中得到更广泛的应用。
|
| 关 键 词: | 自主访问控制 强制访问控制 基于角色访问控制 授权访问 |
| 文章编号: | 1002-8331-(2002)13-0183-03 |
An Analysis of Database Access Control Models |
| |
| Jiang Yunyun Wu Chengrong Zhang Shiyong.An Analysis of Database Access Control Models[J].Computer Engineering and Applications,2002,38(13):183-185,194. |
| |
| Authors: | Jiang Yunyun Wu Chengrong Zhang Shiyong |
| |
| Abstract: | There are three major access con tr ol models:discretionary access control(DAC),mandatory access control(MAC) ,and role-based access control(RBAC).DAC restricts access to objects based on the identity of subjects and/or groups to which they belong,whereas MAC res tricts access to objects based on the sensitivity of the information.The essenc e of RBAC is that permissions are assigned to roles rather than to individual us ers.Through our analysis of concrete models,it can be proved that in spite of the minor limitations,RBAC mechanisms are more acceptable than the traditiona l methods and will surely have a broader application. |
| |
| Keywords: | DAC MAC DBAC authorized access |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
