| Web服务下基于属性的动态访问控制模型研究 |
| |
| 引用本文: | 陈 凯,郭银章. Web服务下基于属性的动态访问控制模型研究[J]. 太原科技大学学报, 2014, 0(3): 175-179 |
| |
| 作者姓名: | 陈 凯 郭银章 |
| |
| 作者单位: | 太原科技大学计算机科学与技术学院,太原030024 |
| |
| 基金项目: | 山西省自然科学基金(2012011015-5);太原科技大学博士基金(20122022) |
| |
| 摘 要: | 针对面向服务的访问控制系统环境所具有的分布性、异构性和动态性特点,在分析了Web Service下访问控制主客体授权和上下文环境关联的基础上,提出了一种Web服务环境下基于属性的访问控制模型。采用Apache Axis2作为SOAP引擎,结合Sun XACML等相关开源工具完成了Web服务环境下ABAC模型的一个实现。本文所提模型,可以有效实现基于主体、客体和当前环境的属性来动态地、细粒度地进行WEB服务环境下的动态访问控制。
|
| 关 键 词: | Web服务环境 基于属性访问控制 策略执行点 策略决策点 动态授权 |
Research of Dynamic Attribute-based Access Control Model in Web Service Environment |
| |
| CHEN Kai,GUO Yin-zhang. Research of Dynamic Attribute-based Access Control Model in Web Service Environment[J]. Journal of Taiyuan University of Science and Technology, 2014, 0(3): 175-179 |
| |
| Authors: | CHEN Kai GUO Yin-zhang |
| |
| Affiliation: | ( Department of Computer Science and Technology, Taiyuan University of Science and Technology, Taiyuan 030024, China ) |
| |
| Abstract: | According to distribution, heterogeneity and dynamic characteristics that the service-oriented access conrol system environment has, an attribute-based access control model in web service is proposed on the basis of analyzing access control authorization of subject and object in web service and context correlation. Using Apache Axis2 as SOAP engine and combining with open source tools such as Sun XACML,it completes the ABAC model for web services environment. The model proposed in this paper can effectively achieve the dynamic access control for web services based on the attributes of subject, object and the current environment, dynamically and fine-grainedly. |
| |
| Keywords: | web service environment ABAC PEP PDP dynamic authorization |
| 本文献已被 CNKI 维普 等数据库收录! |
