| 一种扩展的基于角色的访问控制模型 |
| |
| 引用本文: | 罗雪平,郑奕莉,徐国定. 一种扩展的基于角色的访问控制模型[J]. 计算机工程, 2001, 27(6): 106-107,110 |
| |
| 作者姓名: | 罗雪平 郑奕莉 徐国定 |
| |
| 作者单位: | 华东师范大学计算机系, |
| |
| 摘 要: | 结合自主访问控制和基于角色的访问控制的特点,提出了一种扩展的基于角色的访问控制模型(ERBAC)。该模型既实现了系统中静态的信息安全访问要求,又实现了权限管理中动态的变化要求,给出了ERBAC的动态授权管理框架,最后用形式化语言描述了ERBAC模型满足的规则。
|
| 关 键 词: | 访问控制 角色 静态授权 动态授权 授权管理 信息安全 |
| 文章编号: | 1000-3428(2001)06-0106-02 |
An Extended Role-based Access Control Model |
| |
| LUO Xueping,ZHENG Yili,XU Guoding. An Extended Role-based Access Control Model[J]. Computer Engineering, 2001, 27(6): 106-107,110 |
| |
| Authors: | LUO Xueping ZHENG Yili XU Guoding |
| |
| Abstract: | In this paper, we have combined the characteristics of the discretionary access control with the characteristics of the role-based access control, and proposed an extended role-based access control model. Using this model, we can realize both the requirements of the static security policy of the system and the dynamic requirements of the real world. This paper first describes the ERBAC mainframe of the management of authorization, and then gives the formal rules that ERBAC model must meet. |
| |
| Keywords: | Access control Propagation rule Role Static authorization Dynamic authorization |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
