| 基于属性的Web服务访问控制模型 |
| |
| 引用本文: | 傅鹤岗,李竞.基于属性的Web服务访问控制模型[J].计算机科学,2007,34(5):111-114. |
| |
| 作者姓名: | 傅鹤岗 李竞 |
| |
| 作者单位: | 重庆大学计算机学院,重庆,400030;重庆大学计算机学院,重庆,400030 |
| |
| 摘 要: | 传统访问控制模型都是静态的、粗粒度的,不能很好地在面向服务的环境中应用。本文提出了一种基于属性的访问控制模型(ABAC),它结合 SAML(Security Assertion Markup Language,,安全声明标记语言)和XACML ( Extensible Access Control Markup Language,可扩展访问控制标记语言)标准,能够基于主体、客体和环境的属性来动态地、细粒度地进行授权。新的模型更加灵活,特别适用于动态的Web服务环境。
|
| 关 键 词: | Web 服务 访问控制 SAML XACML |
Attribute-based Access Control Model for Web Services |
| |
| FU He-Gang,LI Jing.Attribute-based Access Control Model for Web Services[J].Computer Science,2007,34(5):111-114. |
| |
| Authors: | FU He-Gang LI Jing |
| |
| Affiliation: | Computer College, Chongqing University, Chongqing 400030 |
| |
| Abstract: | Traditional access control models are not well-suited for the services-oriented environments because they are mostly static and coarsely grained.An Attribute-based access control(ABAC) model is proposed based on SAML and XACML,which adopted the authorization mechanism dynamically and fine-grained based on subject,resource and environment attributes.The new model is more flexible,which is especially suitable for the dynamic,ad-hoc environment for Web services. |
| |
| Keywords: | Web services Access control SAML XACML |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机科学》浏览原始摘要信息 |
|
点击此处可从《计算机科学》下载全文 |
|
