| 通用访问控制框架扩展研究 |
| |
| 引用本文: | 单智勇,孙玉芳.通用访问控制框架扩展研究[J].计算机研究与发展,2003,40(2):228-234. |
| |
| 作者姓名: | 单智勇 孙玉芳 |
| |
| 作者单位: | 中国科学院软件研究所,北京,100080 |
| |
| 基金项目: | 国家自然科学基金 (60 0 73 0 2 2 ),国家“八六三”高技术研究发展计划基金 (863 3 0 6 ZD12 14 2 ),中国科学院知识创新工程基金(KGCX 1 0 9) |
| |
| 摘 要: | 通用访问控制框架(generalized framework for access control,GFAC)是经典的多安全政策支持结构,但是在实际实施多个安全政策模块之后暴露了它潜在的效率缺陷。通过引入访问决策缓冲器得到扩展的通用访问控制框架,并且在RS-Linux安全操作系统中完成实现,性能测算结果表明,扩展后的通用访问控制框架可以有效地弥补效率缺陷。
|
| 关 键 词: | 通用访问控制框架 安全操作系统 多安全政策 信息系统 信息安全 |
A Study of Extending Generalized Framework for Access Control |
| |
| SHAN Zhi,Yong and SUN Yu,Fang.A Study of Extending Generalized Framework for Access Control[J].Journal of Computer Research and Development,2003,40(2):228-234. |
| |
| Authors: | SHAN Zhi Yong and SUN Yu Fang |
| |
| Abstract: | Generalized framework for access control (GFAC) is a classical multi policies supporting mechanism, but reveals an underlying efficiency fault after enforcing several policy modules in practice In the paper, a new access control framework based on the GFAC is constructed by introducing an access decision cache It is implemented in a secure Linux and proved to be efficient by experiments |
| |
| Keywords: | generalized framework for access control secure OS multi policies |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
