|
|||||
|
|
| ERBAC模型的改进与实现* | |
| 引用本文: | 汪林林,张玉林,张学旺b.ERBAC模型的改进与实现*[J].计算机应用研究,2009,26(10):3929-3932. |
| 作者姓名: | 汪林林 张玉林 张学旺b |
| 作者单位: | 1. 重庆邮电大学,计算机学院,重庆,400065;重庆工学院,重庆,400050 2. 重庆邮电大学,计算机学院,重庆,400065 3. 重庆邮电大学,软件学院,重庆,400065 |
| 基金项目: | 重庆市自然科学基金资助项目(CSTC2006BB2369) |
| 摘 要: | 阐述了RBAC96模型在实际应用中存在授权、访问规则、细粒度访问控制等方面的不足,分析了基于角色对用户和角色混合授权的ERBAC模型的不足,提出了一种改进ERBAC模型,使其授权更加灵活,安全性更高,并采用引入访问规则和模糊时间约束机制以及把系统模块和角色进行绑定的方法予以实现。访问规则和审计功能及模糊时间约束机制的引入能使安全性更高,把系统模块和角色进行绑定达到细粒度的访问控制。改进ERBAC模型的授权更加灵活,其安全性更高。 |
| 关 键 词: | 基于角色的访问控制 模糊时间约束 细粒度访问 审计 访问规则 |
Improvement and implementation ERBAC model |
|
| WANG Lin-lin,ZHANG Yu-lin,ZHANG Xue-wangb.Improvement and implementation ERBAC model[J].Application Research of Computers,2009,26(10):3929-3932. | |
| Authors: | WANG Lin-lin ZHANG Yu-lin ZHANG Xue-wangb |
| Abstract: | This article expounded the shortages of RBAC96 model in the aspects of the authorization, access rules, and fine-grained access control in the practical application, and analysed the shortcomings of an extended role-based access control model (ERBAC), which integrated the authorization of users and roles, presented a new expansion mode to make the authorization more flexible and the security more secure. And it introduced access rules and fuzzy time constraint mechanism and the role of system modules and method of binding system modules and the role achieve the goals. Access rules and audit function and fuzzy time constraint mechanism make higher security, it could by binding system modules and the role to achieve fine-grained access. ERBAC model to make the authority more flexible and its security is more secure. |
| Keywords: | RBAC fuzzy time constraint fine-grained access audit access rule |
| 本文献已被 万方数据 等数据库收录! | |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 | |
| 点击此处可从《计算机应用研究》下载全文 | |