| RBAC模型中静态约束机制的扩展 |
| |
| 引用本文: | 张红旗,周靖,张斌.RBAC模型中静态约束机制的扩展[J].北京邮电大学学报,2008,31(3):123-127. |
| |
| 作者姓名: | 张红旗 周靖 张斌 |
| |
| 作者单位: | 中国人民解放军信息工程大学,电子技术学院,郑州,430010;中国人民解放军信息工程大学,电子技术学院,郑州,430010;中国人民解放军信息工程大学,电子技术学院,郑州,430010 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 基于角色的访问控制引入了角色的概念,方便了权限的分配与管理,是一种安全、高效的访问控制机制,并形成了标准. 介绍了RBAC模型标准,对RBAC中的静态约束机制进行了扩展,增加了静态势约束及静态权限约束,阐述了其作用,给出了形式化定义,并扩展了标准中的系统及管理功能规范以对新的约束提供支持. 约束机制的扩展能强化RBAC的授权管理,提高RBAC系统的实用性、可靠性.
|
| 关 键 词: | 基于角色的访问控制 角色 约束 权限 |
| 收稿时间: | 2006-11-1 |
The Research of Extension of Static Constraints Mechanism in RBAC Model |
| |
| ZHANG Hong-qi,ZHOU Jing,ZHANG Bin.The Research of Extension of Static Constraints Mechanism in RBAC Model[J].Journal of Beijing University of Posts and Telecommunications,2008,31(3):123-127. |
| |
| Authors: | ZHANG Hong-qi ZHOU Jing ZHANG Bin |
| |
| Affiliation: | Institute of Electronic Technology,Information Engineering University,Zhengzhou 450004,China |
| |
| Abstract: | Role-based access control (RBAC) introduced the concept of role to improve the assignment and management of privilege. RBAC is a secure, effective method of access control. The constraints model is an important one of the standard models of international committee for information technology standard (INCITS). After introducing the standard models of RBAC, the mechanism of static constraints is extended by introducing the static cardinality constraints and static privilege constraints. These constraints are formalized defined, and the system and administrative functional specification are extended to support the new constraints. The extended constraints will enhance the management of authority and the practicability, reliability of RBAC system. |
| |
| Keywords: | role-based access control role constraints privilege |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《北京邮电大学学报》浏览原始摘要信息 |
|
点击此处可从《北京邮电大学学报》下载全文 |
|
