| 基于Petri网的动态访问控制模型 |
| |
| 引用本文: | 李鹤田,刘云,何德全. 基于Petri网的动态访问控制模型[J]. 计算机工程与应用, 2006, 42(9): 4-5,15 |
| |
| 作者姓名: | 李鹤田 刘云 何德全 |
| |
| 作者单位: | 北京交通大学电子信息工程学院,北京,100044 |
| |
| 摘 要: | 访问控制是保障信息系统安全的一种主要机制,通过限定主体对客体的访问权限,确保对信息资源访问的合法性,达到保证信息的机密性、完整性和可用性的目的。通常,这种机制主要通过静态的访问控制矩阵实现,不随信息系统处理的任务变换而调整。利用Petri网的基本原理,提出了一种适合于信息系统的访问控制模型,随着信息系统的状态变化动态授予访问控制权限,实现对信息系统资源安全的动态保护。
|
| 关 键 词: | 动态访问控制 Petri网 信息安全 |
| 文章编号: | 1002-8331-(2006)09-0004-02 |
| 收稿时间: | 2006-01-01 |
| 修稿时间: | 2006-01-01 |
Dynamic Access Control Model Based on Petri Net |
| |
| Li Hetian,Liu Yun,He Dequan. Dynamic Access Control Model Based on Petri Net[J]. Computer Engineering and Applications, 2006, 42(9): 4-5,15 |
| |
| Authors: | Li Hetian Liu Yun He Dequan |
| |
| Affiliation: | College of Electronics and Information Engincering,Beijing Jiaotong University,Beijing 100044 |
| |
| Abstract: | Access control is an important assurance mechanism for the security of information technology systems.It protects the validity access right for information asset by constraining subjects to access to objects in order to assure the confidentiality,integrity and availability of information.As usual the mechanism is realized by static access control matrix which doesn't represent the dynamic characteristic along with task changing.In this paper,a dynamic access control model is described based on the Petri Net rationale.The dynamic model authorizes user role the access control right according to the implementation of different tasks in the system to prevent inappropriate use of information. |
| |
| Keywords: | dynamic access control Petri net information security |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
