| 支持可变上下文参数的多维RBAC模型 |
| |
| 引用本文: | 欧阳凯,王恒青,董理君,周敬利.支持可变上下文参数的多维RBAC模型[J].华中科技大学学报(自然科学版),2008,36(10). |
| |
| 作者姓名: | 欧阳凯 王恒青 董理君 周敬利 |
| |
| 作者单位: | 1. 武汉科技大学计算机学院,湖北,武汉,430081
2. 华中科技大学计算机科学与技术学院,湖北,武汉,430074 |
| |
| 摘 要: | 在研究GTRBAC和CT-RBAC模型的基础上,提出了一种支持可变上下文参数的多维RBAC(MD-RBAC)模型.该模型通过将反映不同安全因子的约束组织为不同维的约束空间,为不同上下文参数的约束控制提供可靠的基础框架,使得RBAC模型能更好地适用于不同安全需求环境,提高了约束控制的灵活性和多样性.同时,MD-RBAC进一步完善了RBAC模型的状态断言语义,并分析了多维约束语义下的冲突事件和冲突约束.
|
| 关 键 词: | 角色访问控制(RBAC) 多维 约束 断言 冲突 时态 |
A multi-dimensional RBAC model with variable context parameters |
| |
| Ouyang Kai,Wang Hengqing,Dong Lijun,Zhou Jingli.A multi-dimensional RBAC model with variable context parameters[J].JOURNAL OF HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY.NATURE SCIENCE,2008,36(10). |
| |
| Authors: | Ouyang Kai Wang Hengqing Dong Lijun Zhou Jingli |
| |
| Abstract: | MD-RBAC(multi-dimensional role based access control) model was presented after GTRBAC(generalized temporal role based access control) model and the CT-RBAC(conditional temporal role based access control) models were analyzed,which is designed to have the capability to capture multi concurrent context parameters in RBAC.In MD-RBAC,the notions of the constraint dimension and the constraint space were introcuced: one type of constraints which represents one type security factor is one constraint dimension,and the constraint space is composed of all types of constraints.Based on the above notions,one reliable constraint framework is provided for the RBAC model,by which the RBAC model can be easily applicable for sophisticated environments and the flexibility and variety of the constraint control mechanism is improved.Furthermore,we enrich the predicate state semantics in MD-RBAC and analyze the conflict event and the conflict constraint for the multi-dimensional constraint semantics. |
| |
| Keywords: | role based access control(RBAC) multi-dimensional constraint predicate conflict temporal |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
