| 角色转授权模型中授权冲突问题的解决方案 |
| |
| 引用本文: | 孙伟,邬长安,王瑞民.角色转授权模型中授权冲突问题的解决方案[J].计算机工程与应用,2008,44(36):244-248. |
| |
| 作者姓名: | 孙伟 邬长安 王瑞民 |
| |
| 作者单位: | 1. 信阳师范学院,计算机与信息技术学院,河南,信阳,464000
2. 郑州大学,信息工程学院,郑州,450001 |
| |
| 摘 要: | 针对现有用户-用户的角色转授权模型存在授权冲突问题,基于转授权的组件、相关性质以及约束规则,提出了一种约束转授权模型,该模型满足最小特权和职责分离两安全原则,给出了该模型的体系架构和功能描述;以此模型为背景介绍了一种约束描述语言及其形式化语义描述;通过规约算法和构造算法论证了它与严格形式上的一阶谓词逻辑是等价的,并对该约束语言的合理性和完整性进行了讨论;最后用该约束语言给出了模型的表现能力,较好的解决了转授权冲突问题。
|
| 关 键 词: | 基于角色的访问控制 转授权冲突 约束规则 约束描述语言 一阶谓词逻辑 |
| 收稿时间: | 2007-12-19 |
| 修稿时间: | 2008-3-17
|
Role-based constrained delegation model and constraints specification |
| |
| SUN Wei,WU Chang-an,WANG Rui-min.Role-based constrained delegation model and constraints specification[J].Computer Engineering and Applications,2008,44(36):244-248. |
| |
| Authors: | SUN Wei WU Chang-an WANG Rui-min |
| |
| Affiliation: | 1.College of Computer &; Information Technology,Xinyang Normal University,Xinyang,Henan 464000,China 2.School of Information &; Engineering,Zhengzhou University,Zhengzhou 450001,China |
| |
| Abstract: | Existing user to user role -based delegation models did not solve the problem of delegation conflicts.This paper describes role -based delegation module of RBAC,its properties,constraint rules and supposes a Role -based Constrained Delegation Model (RCDM),its structure and function in the practice,which satisfies the least privilege and separation of duty principles.This paper also presents the delegation constraints specification language RDCL based on RCDM.RCDL is proved equivalent to RFOPL by reduction algorithm and construction algorithm,and the soundness and completeness of RDCL is discussed.Finally,expressions of RCDM are described by RDCL,and the problem of delegation conflicts is solved efficiently. |
| |
| Keywords: | Role-Based Access Contro(lRBAC) delegation conflicts constrained rules Role-based Delegation Constraints Specifi- cation Language(RDCL) Restricted First-Order Predicate Logic(RFOPL) |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与应用》浏览原始摘要信息 |
|
点击此处可从《计算机工程与应用》下载全文 |
|
