| 角色访问控制 |
| |
| 引用本文: | 毛碧波,孙玉芳.角色访问控制[J].计算机科学,2003,30(1):121-123. |
| |
| 作者姓名: | 毛碧波 孙玉芳 |
| |
| 作者单位: | 中国科学院软件研究所开放系统与中文信息处理中心,北京,100080 |
| |
| 摘 要: | 1 引言角色访问控制是一种介于传统的自主访问控制和强制访问控制机制之间的安全策略,越来越引起人们的重视。角色访问控制机制很自然映射到组织机构中,每个用户可以赋予一些角色,每个角色负责一些任务。在最近20年中,角色访问控制机制已经有各种不同形式的应用。本文介绍Sandhu在96年提出的角色访问控制形式化的定义和模型,指出了角色访问控制和用户组的不同之处,并结合Sandhu提出的模型,给出了角色继承和角色限制的定义以及形式化的描述,对角色限制中最重要的部分也就是任务分离作了详细的介绍。
|
| 关 键 词: | 角色访问控制 信息安全 信息加密 自主访问控制 |
Role based Access Control Model |
| |
| MAO Bi-Bo SUN Yu-Fang.Role based Access Control Model[J].Computer Science,2003,30(1):121-123. |
| |
| Authors: | MAO Bi-Bo SUN Yu-Fang |
| |
| Abstract: | Role based access control (RBAC) was proposed in 70's, and prevailed in 90's, and then Sandhu etc proposed formal RBAC model. Now RBAC is attracting increasing attention, and many governmental and commercial organizations have adopted it, its importance is more and more apparent. In this paper we illuminates the distinctions and similarities of role and user groups, and based the model that was proposed by Sandhu, we examine the relationship of role hierarchies and role constraints and formally describes that, and explain the most important part of role constraints ,which is separation of duties. |
| |
| Keywords: | RBAC Role constraint Role hierarchy MAC DAC |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
|
