| 可扩展约束的基于角色访问控制策略的XML表示 |
| |
| 引用本文: | 耿幼平,张治坤,尚群.可扩展约束的基于角色访问控制策略的XML表示[J].大连理工大学学报,2005,45(Z1):146-149. |
| |
| 作者姓名: | 耿幼平 张治坤 尚群 |
| |
| 作者单位: | 北京大学,计算中心,北京,100871 |
| |
| 摘 要: | 通过对基于角色访问控制基本原理及约束的分析,设计了XML表达RBAC元素的方案,增强了系统表达不同策略的能力,适应分布式环境的要求. 策略的XML表示把系统管理和访问控制的实施技术分离,提高了系统开发的灵活性. 对于扩展的约束表达,采用分离的模块实施约束检查,从而实现了较好的约束可扩展性. 特定应用的访问控制系统可以根据已有的策略和现实的需求灵活定制.
|
| 关 键 词: | 信息安全 访问控制 基于角色的访问控制 约束 |
| 文章编号: | 1004-5619(2005)04-4-03 |
Extensible constraint in XML representation of RBAC |
| |
| GENG You-ping,ZHANG Zhi-kun,SHANG Qun.Extensible constraint in XML representation of RBAC[J].Journal of Dalian University of Technology,2005,45(Z1):146-149. |
| |
| Authors: | GENG You-ping ZHANG Zhi-kun SHANG Qun |
| |
| Abstract: | Based on the analyses of role-based access control model and constraints in the model,an XML plan of policy representation and constraint extensible implementation mechanism is proposed.XML schema-based policy representation is well organized so as to express more constraints and satisfy more requirements from real world applications.System administration and access control module is independently implemented based on the policy representation.Access control is configurable within the implemented feature list based on application requirements. |
| |
| Keywords: | information security access control role-based access control constraint |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
