期刊文献+

利用LSM框架实现基于角色的访问控制 被引量:2

IMPLEMENTATION OF RBAC BASED ON LSM FRAMEWORK
下载PDF
导出
摘要 传统的L inux操作系统只提供有限的访问控制机制,缺乏对现有访问控制模型的有效支持,为了克服L inux在安全访问控制方面的不足,增强安全管理的灵活性和易用性,本文深入研究了LSM(L inux SecurityModu le)安全访问框架和基于角色的访问控制(RBAC-Role-Based Access Control)技术,提出了一种利用LSM框架实现RBAC的方法,并详细讨论了在L inux环境中有关实现问题。 LSM (Linux Security Module) is a general light-weighted kernel framework to support different user-defined security implementations, hence to overcome the insufficiency of traditional Linux access control mechanism and enforce the flexibility of security management. This article presents an analysis for LSM framework and RBAC( Role-Based Access Control), and also discusses the implementation of RBAC based on LSM framework.
出处 《计算机应用与软件》 CSCD 北大核心 2006年第8期38-40,共3页 Computer Applications and Software
基金 航空科学基金(03F31007)资助。
关键词 LINUX LINUX安全模块 访问控制 基于角色的访问控制 Linux Linux security module Access control Role-based access control
  • 相关文献

参考文献4

  • 1Chris Wright and Crispin Cowan, Linux Security Modules : General Security Support for the Linux Kernel, 11th USENIX Security Symposium,2002.05.13.
  • 2丁志芳,徐孟春,李晓秋,刘琰.Linux安全模块的设计与实现[J].计算机应用,2003,23(z1):289-291. 被引量:2
  • 3Ravi Sandhu, Rationale for the RBAC96 Family of Access Control Models,Proceedings of the 1st ACM Workshop on Role-Based Access Control. ACM, 1997.
  • 4赵亮,未来的标准:Linux内核的通用安全支持框架,http://www900.ibm.com/,2003.7.

二级参考文献6

  • 1[1]Abrams MD, LaPadula LJ, Eggers KW, et al. A generalized framework for access control: An informal description[ A]. Proceedings of the 13th National Computer Security Conference [ C]. Baltimore,MD, October 1990. 135 - 143.
  • 2[2]Anderson J. Computer Security Technology Planning Study[ R]. Report Technical Report ESD - TR - 73 - 51, Air Force Elect. Systems Div., October 1972.
  • 3[3]Spencer R, Smalley S, Loscocco P, et al. The Flask Security Architecture: System Support for Diverse Security Policies[ A]. Proceedings of the Eighth USENIX Security Symposium[ C]. August 1999.123 - 139.
  • 4[4]Trumper W. Summary about POSIX. 1 e[ EB/OL]. http://wt. xpilot. org/publications/posix. 1 e, 1999 - 07.
  • 5[5]Volanschi EN, Consel C, Muller G, et al. Declarative Specialization of Object-Oriented Programs[ A]. Proceedings of the Conference on Object-Oriented Programming Systems, Languages, and Applications(OOPSLA′97) [C]. Atlanta, GA, October 1997.
  • 6[6]Watson RNM. TrustedBSD: Adding Trusted Operating System Features to FreeBSD[A]. Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference (FREENIX′01) [C]. June 2001.

共引文献1

同被引文献11

引证文献2

二级引证文献2

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部