首页 | 本学科首页   官方微博 | 高级检索  
     

一种基于角色的访问控制扩展模型及其实现
引用本文:黄益民,平玲娣,潘雪增.一种基于角色的访问控制扩展模型及其实现[J].计算机研究与发展,2003,40(10):1521-1528.
作者姓名:黄益民  平玲娣  潘雪增
作者单位:浙江大学计算机科学与技术学院,杭州,310027
基金项目:国家自然科学基金(698840 0 3 ),浙江省自然科学基金(60 0 0 14 )
摘    要:提出了一种新的基于角色的访问控制模型,该模型对典型RBAC模型进行了扩展,在典型RBAC模型只对与访问主体安全相关的概念进行抽象的基础上,增加了对与访问对象和访问事务安全相关的概念的抽象,增强了RBAC模型的功能.该模型具有简单、灵活、表达力强、可用性强和与现实世界更接近等特点.在给出模型的形式化定义之后,还对该模型的实现方法进行了分析和研究,设计了模型实现的框架结构和角色分配的监控器机制,制定了访问策略.

关 键 词:访问控制  安全模型  角色

Design of an Extended Role-Based Access Control Model and Its Impementation
HUANG Yi Min,PING Ling Di,and PAN Xue Zeng.Design of an Extended Role-Based Access Control Model and Its Impementation[J].Journal of Computer Research and Development,2003,40(10):1521-1528.
Authors:HUANG Yi Min  PING Ling Di  and PAN Xue Zeng
Abstract:A new role based access control model is proposed, which extends the traditional role based access control (RBAC) model Based on the abstraction of the user properties relevant to security in traditional RBAC model, the new model adds the abstraction of the object properties and access properties relevant to security Using the traditional concept of role, it incorporates these properties into the access decision and enhances RBAC's power and function The characteristics of the new model include simpleness, flexibility, power expression ability, and strong usability Also it is closer to the real world than the traditional RBAC model After giving a formal definition of the new model, its implementation method is studied and the structure of model implementation, the monitor mechanism of role assignment, and the access decision policy are presented
Keywords:access control  security model  role
本文献已被 CNKI 维普 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号