摘要
授权与访问控制中的资源管理是负责描述和管理访问策略中的客体及其相关属性和关系的技术,它是实现统一授权管理的基础.然而,在访问控制技术多年的发展历程中,资源管理没有得到广泛深入的研究.通过比较分析现有访问控制模型中的资源管理模式,研究资源的组织方式、属性管理、操作管理等方面对授权和访问控制实施的影响,针对分布式环境下授权与访问控制的新需求,指出了资源管理技术面临的问题,展望了将来的研究方向.
Resource management in authorization and access control is the technology that managing protected objects and their related attributes and relations. It is a technology effecting the result of authorization and is a way of expressing security requirement of application environments. In the development of access control technology, research on resource management is limited. In this paper, some access control models are analyzed and compared in aspect of their resource management mechanism. The effect of resource organization, resource attribute management and operation management on authorization and access control is studied. The existing problems and future research directions are summarized.
出处
《小型微型计算机系统》
CSCD
北大核心
2011年第4期619-625,共7页
Journal of Chinese Computer Systems
基金
国家"八六三"高技术研究发展计划项目(2009AA01Z4382006AA01Z457)资助
关键词
资源管理
访问控制
授权管理
resource management
access control
authorization management