期刊文献+

基于角色的动态转授权模型的研究与实现 被引量:2

Role-based dynamic delegation model
下载PDF
导出
摘要 为在转授权过程中实现双边协议和动态角色互斥约束,解决由权限共享引起的角色互斥问题,提出了基于角色的动态转授权模型。首先,对模型的核心思想进行了阐述;然后,结合离散数学的相关知识对模型中的组成元素、元素间的相互关系和转授权的约束进行了形式化描述;最后,对如何借助Agent,在兼顾动态职责分离约束的同时实施带时间限制的部分角色转授权,以及对权限共享问题的处理细节进行了阐述。 To realize bilateral protocols and dynamic restriction of roles mutex,and to solve the problems arose by permission sharing,a role-based dynamic delegation model was proposed.Firstly,the main idea of the model was explained.Secondly,the constitution elements,elements relationships and delegation restrictions were expatiated with discrete mathematical expressions.Finally,details on how to achieve temporal delegation,part-role delegation,bilateral protocols,and dynamic restriction of roles mutex as well as how to solve the problem of permission sharing based on Agent in the whole delegation process were discussed.
出处 《计算机集成制造系统》 EI CSCD 北大核心 2007年第11期2115-2120,2194,共7页 Computer Integrated Manufacturing Systems
基金 国家自然科学基金资助项目(70271045) 辽宁省自然科学基金资助项目(2051066)。~~
关键词 双边协议 动态角色互斥约束 权限共享 基于角色的动态转授权模型 bilateral protocols dynamic restriction of roles mutex permission sharing role-based dynamic delegation model
  • 相关文献

参考文献18

  • 1ZHANG L H, AHN G J, CHU B T. A role-based framework for role-based delegation[C]//Proceedings of the 6th ACM Symposium on Access Control Models and Technologies. New York, N. Y., USA: ACM Press,2001:153-162.
  • 2BARKA E,SANDHU R. Framework for role-based delegation models[C]//Proceedings of the 16th Annual Computer Security Applications Conference. Los Alamitos, Cal. , USA: IEEE Computer Society Press, 2000:168-176.
  • 3BARKA E, SANDHU R. A role based delegation model and some extensions[C]//Proceedings of the 23rd National Information Systems Security Conference. Los Alamitos, Cal., USA: IEEE Computer Society Press,2000:101-114.
  • 4BARKA E, SANDHU R. Role-based delegation model/hierachical roles[C]//Proceedings of the 12th Annual Computer Security Applications Conference. Los Alamltos, Cal. , USA: IEEE Computer Society Press, 2004: 396-404.
  • 5ZHANG L H, AHN G J, CHU B T. A rule-based framework for role based delegation and revocation[J]. ACM Transactions on Information and System Security,2003,6(3):404-441.
  • 6ZHANG X Z,OH S,SANDHU R. PBDM:a flexible delegation model in RBAC[C]//Proceedings of the 8th ACM Symposium on Access Control Models and Technologies. New York, N. Y. ,USA: ACM Press,2003:149-157.
  • 7张黎明,王小明,李黎.几种基于角色的代理授权模型特征比较[J].微机发展,2004,14(11):126-129. 被引量:3
  • 8PARK D G,LEE Y R. A Flexible role-based delegation model using characteristics of permissions[C]//Database and Expert Systems Applications. Berlin, Germany: Springer-Verlag, 2005: 310-323.
  • 9WAINER J, KUMAR A. A fine-grained, controllable, user-touser delegation method in RBAC[C]//Proceedings of the 10th ACM Symposium on Control Models and Technologies. New York, N. Y. , USA: ACM Press, 2005:59-66.
  • 10WANG H E,OSBORN S L. Delegation in the role graph model[C]//Proceedings of the 11th ACM Symposium on Access Control Models and Technologies. New York, N. Y. , USA: ACM Press, 2006,91-100.

二级参考文献106

  • 1孙波,赵庆松,孙玉芳.TRDM——具有时限的基于角色的转授权模型[J].计算机研究与发展,2004,41(7):1104-1109. 被引量:26
  • 2徐震,李斓,冯登国.基于角色的受限委托模型[J].软件学报,2005,16(5):970-978. 被引量:52
  • 3Department of Defence (USA). Department of Defense Trusted Computer system evaluation criteria. DoD 5200-78-STD, DoD,1985
  • 4Sandhu R,Ferraiolo D, Kuhn R. The NIST model for role-based access control: towards a unified standard. In: Proc. of 5th ACM Workshop on Role-Based Access Control, ACM, Berlin, Germany, July, 2000
  • 5Osborn S,Sandhu R,Munawer M. Configuring role-based access control to enforce mandatory and discretionary access control policies. ACM Transactions on Information and System Security,2000,3(2)
  • 6Sandhu R,et al. Role-baseed access control model. IEEE Computer,1996,29(2)
  • 7Sandhu R. Role activation hierarchies. In: Proc. of 3rd ACM Workshop on Role-Based Access Control, ACM, Fairfax, Oct. 1998
  • 8Sandhu R,et al. Role-based access control models. IEEE Computer, 1996,29 (2): 38~47
  • 9Ahn G J,Sandhu R. The RSL99 language for role-based separation od duty constraints. In: proc. of 4th ACM Workshop on RoleBased Access Control, Fairfax, VA ,Oct. 1999.43~ 54
  • 10Sandhu R,Bhamidipati V,Munawer Q. The ARBAC97 model for role-based administration of roles. ACM Transactions on Information and system Security, 1999,2(1 ): 105~ 135

共引文献122

同被引文献34

引证文献2

二级引证文献5

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部