| 一种基于角色PMI的访问控制安全模型 |
| |
| 引用本文: | 吴立军. 一种基于角色PMI的访问控制安全模型[J]. 微机发展, 2004, 14(8): 123-125 |
| |
| 作者姓名: | 吴立军 |
| |
| 作者单位: | 中山大学计算机科学与技术系 广东广州510275 |
| |
| 摘 要: | 访问控制一直是信息安全的重要保证之一。它包括三种主要的策略,即自主访问控制、强制访问控制和基于角色的访问控制。文中介绍了以上三种访问控制策略以及角色指派属性证书和角色规范属性证书,以此为基础讨论了基于角色的PMI体系结构,然后探讨了基于角色PMI的访问控制安全模型。该模型具有灵活、方便、占用较少存储空间以及减少了网络通信的开销等优点,目前正将该模型使用到大型网络信息管理系统中,实现系统的访问控制。
|
| 关 键 词: | 公钥证书 角色规范属性证书 角色指派属性证书 访问控制 |
| 文章编号: | 1005-3751(2004)08-0123-03 |
| 修稿时间: | 2004-02-16 |
The Role-based PMI Secure Model for Access Control |
| |
| WU Li-jun. The Role-based PMI Secure Model for Access Control[J]. Microcomputer Development, 2004, 14(8): 123-125 |
| |
| Authors: | WU Li-jun |
| |
| Abstract: | The access control is always one of the important guarantees of information security. It includes three main strategies, namely, discretionary access controls (DAC), mandatory access controls (MAC) and role-based access controls (RBAC). Here introduces three main security strategies and the role specification AC and role assignment AC, and discusses the role-based PMI architecture, and discusses and researches the role-based PMI secure model for access control. The model has advantages of flexibility, convenience, less storage space and less network consumption,etc. At present,the model in the net management information system is been going to be used to realize access control for system. |
| |
| Keywords: | public key certificate role specification AC role assignment AC access control |
| 本文献已被 CNKI 维普 等数据库收录! |
