摘要
针对面向服务的访问控制系统环境所具有的分布性、异构性和动态性特点,在分析了Web Service下访问控制主客体授权和上下文环境关联的基础上,提出了一种Web服务环境下基于属性的访问控制模型。采用Apache Axis2作为SOAP引擎,结合Sun XACML等相关开源工具完成了Web服务环境下ABAC模型的一个实现。本文所提模型,可以有效实现基于主体、客体和当前环境的属性来动态地、细粒度地进行WEB服务环境下的动态访问控制。
According to distribution, heterogeneity and dynamic characteristics that the service-oriented access conrol system environment has, an attribute-based access control model in web service is proposed on the basis of analyzing access control authorization of subject and object in web service and context correlation. Using Apache Axis2 as SOAP engine and combining with open source tools such as Sun XACML,it completes the ABAC model for web services environment. The model proposed in this paper can effectively achieve the dynamic access control for web services based on the attributes of subject, object and the current environment, dynamically and fine-grainedly.
出处
《太原科技大学学报》
2014年第3期175-179,共5页
Journal of Taiyuan University of Science and Technology
基金
山西省自然科学基金(2012011015-5)
太原科技大学博士基金(20122022)