| 强制访问控制在基于角色的保护系统中的实现 |
| |
| 引用本文: | 崔宾阁,刘大昕. 强制访问控制在基于角色的保护系统中的实现[J]. 计算机工程, 2006, 32(6): 167-169 |
| |
| 作者姓名: | 崔宾阁 刘大昕 |
| |
| 作者单位: | 哈尔滨工程大学计算机科学与技术学院,哈尔滨,150001;哈尔滨工程大学计算机科学与技术学院,哈尔滨,150001 |
| |
| 摘 要: | 研究了通过对基于角色的访问控制(RBAC)进行定制实现强制访问控制(MAC)机制的方法。介绍了RBAC模型和MAC模型的基本概念,讨论了它们之间的相似性,给出了在不考虑角色上下文和考虑角色上下文两种情形下满足强制访问控制要求的RBAC系统的构造方法。从这两个构造中可以看出,强制访问控制只是基于角色的访问控制的一种特例,用户可以通过对RBAC系统进行定制实现一个多级安全系统。
|
| 关 键 词: | 基于角色的访问控制 强制访问控制 基于格的访问控制 |
| 文章编号: | 1000-3428(2006)06-0167-03 |
| 收稿时间: | 2005-03-23 |
| 修稿时间: | 2005-03-23 |
Realization of Mandatory Access Control in Role-based Protection Systems |
| |
| CUI Binge,LIU Daxin. Realization of Mandatory Access Control in Role-based Protection Systems[J]. Computer Engineering, 2006, 32(6): 167-169 |
| |
| Authors: | CUI Binge LIU Daxin |
| |
| Affiliation: | School of Computer Science and Technology, Harbin Engineering University, Harbin 150001 |
| |
| Abstract: | The realization of mandatory access control(MAC) by configuring role-based access control(RBAC) is investigated.First,the basic definitions of RABC model and MAC model are introduced.Second,the similarities between them are discussed.Third,two constructions are given which simulate MAC in RBAC systems.Among the constructions one considered the role context and the other not.It is obvious from the two constructions that MAC is just one instance of RBAC,so users can implement a multilevel secure system by configuring a RBAC system whenever necessary. |
| |
| Keywords: | Role-based access control Mandatory access control Lattice-based access control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
