|
|||||
|
|
| 基于上下文的普适计算角色访问控制模型 | |
| 引用本文: | 辛艳,罗长远,刘辉,应一舟.基于上下文的普适计算角色访问控制模型[J].计算机工程与设计,2010,31(8). |
| 作者姓名: | 辛艳 罗长远 刘辉 应一舟 |
| 作者单位: | 1. 解放军信息工程大学,电子技术学院,河南,郑州,450004 2. 济南军区72850部队,山东,济南,250000 3. 安徽预备役高炮旅,安徽,芜湖,241000 |
| 摘 要: | 针对普适计算访问控制上下文感知的特点,分析了现有扩展RBAC模型的不足,提出了基于上下文的角色访问控制模型(CRBAC).模型定义了可执行角色集,引入由时间状态,位置信息、用户信任值组成的上下文信息,由上下文信息激活可执行角色集,并以此代表用户最终获得的权限,这样用户就只能在一定的上下文中才可以执行某个角色的某个权限,实现了细粒度的动态授权.然后分别对此模型下单用户和多用户的访问控制过程进行了描述,最后利用有限状态机验证了模型的安全性. |
| 关 键 词: | 普适计算 访问控制 可执行角色集 上下文信息 有限状态机 |
Context-based RBAC model in pervasive computing |
|
| XIN Yan,LUO Chang-yuan,LIU Hui,YING Yi-zhou.Context-based RBAC model in pervasive computing[J].Computer Engineering and Design,2010,31(8). | |
| Authors: | XIN Yan LUO Chang-yuan LIU Hui YING Yi-zhou |
| Affiliation: | XIN Yan1,LUO Chang-yuan1,LIU Hui2,YING Yi-zhou3 (1. Institute of Electronic Technology,Information Engineering University,Zhengzhou 450004,China,2. Unit 72850,Jinan Military Region,Jinan 250000,3. Anhui Reserve Anti-Aircraft Artillery Brigade,Wuhu 241000,China) |
| Abstract: | Aming at the traits of apperceiving contexts of pervasive computing access control and the shortages of the existing RBAC,the context-based RBAC model (CRBAC) is presented.The set of executive roles in the model is defined,the contexts consisting of time state,environment and user's trust are presented.For a deputy of use's final permissions,the set of executive roles is activated by contexts.So that the user can only execute a role's permission in definite contexts,the fine-granularity and dynamic authorization is achieved.Then the access control process of single-user and multi-user are described respectively.Finally,the security of model is validated by finite state machine (FSM). |
| Keywords: | pervasive computing access control executive roles contexts FSM |
| 本文献已被 CNKI 万方数据 等数据库收录! | |