| 电子现金系统的RBAC管理方案 |
| |
| 引用本文: | 王进,贾忠田,李大兴,程震.电子现金系统的RBAC管理方案[J].计算机工程与设计,2006,27(15):2722-2724,2792. |
| |
| 作者姓名: | 王进 贾忠田 李大兴 程震 |
| |
| 作者单位: | 1. 山东大学,网络信息安全研究所,山东,济南,250100
2. 山东理工大学,计算机科学学院,山东,淄博,255049 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 在基于电子现金的网络支付方案中,交易过程相关的多个实体有不同类型的权限和访问标准,如果各自进行安全管理,会使得整个系统的维护协调有很大难度。因此,横跨多个实体的权限管理带来了额外的安全性挑战。分析了基于RBAC的电子现金系统的权限管理策略,通过基于常规角色的授权实现了对电子现金系统内多个实体的访问控制,并设置与常规角色互斥的管理角色实现系统的分布式自行管理.
|
| 关 键 词: | 电子现金 电子商务 角色 基于角色的访问控制 |
| 文章编号: | 1000-7024(2006)15-2722-03 |
| 收稿时间: | 2005-06-01 |
| 修稿时间: | 2005-06-01 |
Role-based access control in electronic cash system |
| |
| WANG Jin,JIA Zhong-tian,LI Da-xing,CHENG Zhen.Role-based access control in electronic cash system[J].Computer Engineering and Design,2006,27(15):2722-2724,2792. |
| |
| Authors: | WANG Jin JIA Zhong-tian LI Da-xing CHENG Zhen |
| |
| Affiliation: | 1. Institute of Information and Network Security, Shandong University, Jinan 250100, China; 2. School of Computer Seineee, Shandong University of Technology, Zibo 255049, China |
| |
| Abstract: | In the intemet payment scheme based on E-cash, different domains relevant to the transaction process have different privileges and different access authorization. If they all deal with security problems respectively, maintenance and collaboration for the whole system will be very difficult. The issue of privilege management across multiple domains will bring additional challenges. Privilege mana- gement policies for the E-cash system based on RBAC are analyzed. Access control in different domains is implemented by authorizing roles. Administrative roles are also used in the system to realize self-management in the E-cash system. |
| |
| Keywords: | E-cash electronic commerce role RBAC |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
