| RBAC授权数字证书的设计与实现 |
| |
| 引用本文: | 高正宪,涂亚庆,李中学.RBAC授权数字证书的设计与实现[J].重庆邮电学院学报(自然科学版),2007(2). |
| |
| 作者姓名: | 高正宪 涂亚庆 李中学 |
| |
| 作者单位: | 后勤工程学院后勤信息工程系 重庆400016 |
| |
| 摘 要: | 为了避免传统的数据库存储用户口令验证访问控制权限方式因失窃而引起的不安全,设计了一种RBAC授权数字证书。通过在证书中扩展角色属性,并将角色授权和资源分配与证书的颁发分隔独立,一方面实现了证书对资源的访问控制,另一方面使得角色授权更加灵活。最后对该方式进行了验证实现。
|
| 关 键 词: | 数字证书 访问控制 CA 角色 |
Design and implementation of RBAC-authorized digital certificate |
| |
| GAO Zheng-xian TU Ya-qing LI Zhong-xue.Design and implementation of RBAC-authorized digital certificate[J].Journal of Chongqing University of Posts and Telecommunications(Natural Sciences Edition),2007(2). |
| |
| Authors: | GAO Zheng-xian TU Ya-qing LI Zhong-xue |
| |
| Abstract: | In order to avoid the insecurity that is caused by theft for traditional access control authority of password authentication for database storage users,a design and establishment of certification authority(CA)is completed successfully.Through adding the attribute of roles to the certificate,and separating the role authorization and re- source appointment from the certificate distribution,the accessing to Web resource using a certificate is achieved, and at the same time,the role authorization becomes more flexible.At last,this scheme is verified successfully. |
| |
| Keywords: | digital certificate access control certification authority(CA) role |
| 本文献已被 CNKI 等数据库收录! |
|
