摘要
传统的主体—客体访问矩阵模型缺少对动态因素的描述,故应用在刻画系统中具体的资源访问活动时存在着许多不足,如无法实现“最小特权”原则和缺乏对访问授权时间特性的控制。引入可执行程序及时间两维,提出的四维访问控制模型很好地弥补了上述的不足。
Because of lacking something to discribe dynamic characters,the traditional Subject-object access matrix model has
lots of bugs in characterization of some access to resource of real system.For example:it can’t implement the principle of least
privilege or has less control on time character of access privilege.After setting up two dimensions of executable program and time,
a four-dimension access mutrix model come into being based on which the bugs refered to above were removed.
出处
《计算机工程与设计》
CSCD
2004年第5期668-670,707,共4页
Computer Engineering and Design
基金
国家863高技术计划基金(2001AA144010)