| 基于行为的访问控制应用于多级安全信息系统 |
| |
| 引用本文: | 李凤华,史国振,张晶辉,李莉.基于行为的访问控制应用于多级安全信息系统[J].计算机工程与设计,2012,33(1):106-110. |
| |
| 作者姓名: | 李凤华 史国振 张晶辉 李莉 |
| |
| 作者单位: | 1. 北京电子科技学院电子信息工程系,北京,100070
2. 西安电子科技大学计算机学院,陕西西安,710071 |
| |
| 基金项目: | 国家自然科学基金,教育部重点基金,北京市自然科学基金,新闻出版重大科技工程基金,北京电子科技学院信息安全重点实验室基金 |
| |
| 摘 要: | 网络位置探测是基于行为的访问控制模型应用的关键问题之一.给出了ABAC的多级安全信息系统访问控制机制,提出了网络位置探测器架构,描述了网络逻辑位置探测原理以及网络物理位置探测原理,给出了依赖DHCP获取网络逻辑位置的方法与基于SNMP、MIB提取网络物理地址的方法.在此基础上,设计并实现了应用于多级安全信息系统的网络位置探测器,并给出了应用示例.
|
| 关 键 词: | 访问控制 环境状态 网络位置探测 动态主机配置协议 简单网络管理协议 |
Application of action-based access control model to multilevel security information systems |
| |
| LI Feng-hua
,
SHI Guo-zhen
,
ZHANG Jing-hui
,
LI Li.Application of action-based access control model to multilevel security information systems[J].Computer Engineering and Design,2012,33(1):106-110. |
| |
| Authors: | LI Feng-hua SHI Guo-zhen ZHANG Jing-hui LI Li |
| |
| Affiliation: | 1(1.Department of Electronic Engineering,Beijing Electronic Science and Technology Institute,Beijing 100070,China; 2.School of Computer Science and Technology,Xidian University,Xi’an 710071,China) |
| |
| Abstract: | Network location detection is one of the key issues in applications of action-based access control model.Firstly,the access control mechanism for multilevel security information systems is proposed.Then,the architecture of network location detector is presented,and the principles for detecting the logical and physical network location are introduced.In this architecture,it depends on DHCP to get logical network location,while it obtains physical network location based on SNMP and MIB.Finally,the network location detector is implemented in a multilevel security information system,and an application is presented. |
| |
| Keywords: | access control environment state network location detection DHCP SNMP |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
