|
|||||
|
|
| 基于策略的RBAC统一授权模型研究 | |
| 引用本文: | 何长龙,李伟平,贺建忠,魏明欣.基于策略的RBAC统一授权模型研究[J].信息安全与通信保密,2010(6):77-81. |
| 作者姓名: | 何长龙 李伟平 贺建忠 魏明欣 |
| 作者单位: | 1. 北京大学电子政务研究院,北京,100018 2. 长春吉大正元信息技术股份有限公司,吉林,长春,130012 3. 华北计算技术研究所,北京,100083 4. 吉林省政府发展研究中心,吉林,长春,130021 |
| 摘 要: | 现有的授权方式难以满足多种应用要求。提出一种基于策略的RBAC统一授权模型,并给出其实现方案。该模型以策略为基本构成要素,实现了根据多种属性的角色自动授予、角色冲突检测等功能。利用该模型能够以细粒度、灵活及与具体应用无关的方式授予用户权限,解决了大规模、海量用户系统难以自动授权的问题。基于该模型实现的统一授权与访问系统验汪了模型的有效性,可用在多种类型的应用系统上。 |
| 关 键 词: | 授权 访问控制 策略 安全 |
Study on RBAC Authorization Model Based on Policies |
|
| HE Chang-long,LI Wei-ping,HE Jian-zhong,WEI Ming-xin.Study on RBAC Authorization Model Based on Policies[J].China Information Security,2010(6):77-81. | |
| Authors: | HE Chang-long LI Wei-ping HE Jian-zhong WEI Ming-xin |
| Affiliation: | 1Research Institute of e-government, Peking University, Beijing 100018, China; 2Jilin University Information Technologies Co., Ltd., Changchun Jilin 130012, China; 3North China Institute of Computer Technology, Beijing 100083, China; 4Jilin Provincial Government Development and Research Center, Changchun Jilin 130021, China) |
| Abstract: | The existing ways of authorization are hard to meet the requirements of various application systems. A RBAC authorization model based on policies and its implementation are proposed. The policies are the basic components of the model and implement the functions of automatic authorization and role-conflict detection. The model could, in flexible mode and fine grain to authorize users without thinking about the kinds of applications, thus solving the automatic authorization problem of large-quantity users and complex systems. The authorization and access control system based on the model verifies the validity of the model, and this model is suitable for many kinds of application systems. |
| Keywords: | authorization access control policy security |
| 本文献已被 维普 万方数据 等数据库收录! | |