| 一种多级跨域访问控制管理模型 |
| |
| 引用本文: | 张红旗,刘江,代向东,王义功.一种多级跨域访问控制管理模型[J].信息网络安全,2014(2):1-6. |
| |
| 作者姓名: | 张红旗 刘江 代向东 王义功 |
| |
| 作者单位: | [1]解放军信息工程大学,河南郑州450001 [2]河南省信息安全重点实验室,河南郑州450001 |
| |
| 基金项目: | 国家“973”重点基础研究发展计划[2011CB311801]、国家“863”高技术研究发展计划[2012AA012704] |
| |
| 摘 要: | 访问控制管理为维护访问控制策略的安全、一致提供了重要保障。针对现有访问控制管理模型存在指派关系复杂、扩展性差、缺乏对跨域访问管理有效支撑的问题,结合多级跨域系统特性和访问控制管理的细粒度要求,文章提出了多级跨域访问控制管理模型,给出了模型的基本元素、元素关系、约束条件和管理规则。与现有研究相比,该模型具有良好的可扩展性,支持细粒度的管理操作,能够有效支撑多级跨域环境下安全、统一的访问控制管理。
|
| 关 键 词: | 多级跨域 访问控制管理 细程度 |
A Multi-Level & Inter-Domain Access Control Administrative Model |
| |
| ZHANG Hong-qi,LIU Jiang,DAI Xiang-dong,WANG Yi-gong.A Multi-Level & Inter-Domain Access Control Administrative Model[J].Netinfo Security,2014(2):1-6. |
| |
| Authors: | ZHANG Hong-qi LIU Jiang DAI Xiang-dong WANG Yi-gong |
| |
| Affiliation: | ZHANG Hong-qi, LIU Jiang, DAI Xiang-dong, WANG Yi-gong |
| |
| Abstract: | The technologies of access control administration provide security and consistency to access control policies. Aiming at the problems of complex assignment, scalability and lacking of effective support for cross-domain access management of exsisting models, this paper proposes a multi-level&inter-domain access control administrative model (ML-IDACAM) by combining the characteristics of multi-level&inter-domain system and the ifne-grained need of access control administration, bringing forward the model’s basic elements, element relationships, constraints and administration rules. Compared with related works, the ML-IDACAM model which has good expansibility and ifne-grained operation can support secure and centralized access control administration. |
| |
| Keywords: | multi-level and inter-domain access control administration ifne-gramed |
| 本文献已被 CNKI 维普 等数据库收录! |
