| 一种改进的Web服务访问控制模型 |
| |
| 引用本文: | 张尚韬.一种改进的Web服务访问控制模型[J].长春工程学院学报(自然科学版),2012,13(1):115-118. |
| |
| 作者姓名: | 张尚韬 |
| |
| 作者单位: | 福建信息职业技术学院,福州,350003 |
| |
| 摘 要: | 访问控制技术可以防止非法用户的入侵或者合法用户的不慎操作对资源造成的破坏。研究和分析了当前基于Web服务的访问控制模型存在的问题。并给出了一种改进的基于属性的Web服务访问控制模型,新模型通过在XACML访问控制框架中引入了XML加密和XML签名技术,从而保证了敏感属性信息的机密性和访问控制策略的完整性。
|
| 关 键 词: | Web服务 属性 访问控制 策略 |
An improved Web service access control model |
| |
| ZHANG Shang-tao.An improved Web service access control model[J].Journal of Changchun Institute of Technology(Natural Science Edition),2012,13(1):115-118. |
| |
| Authors: | ZHANG Shang-tao |
| |
| Institution: | ZHANG Shang-tao(Fujian Polytechnic of Information Technology,Fuzhou 350003,China) |
| |
| Abstract: | The access control technology can prevent the invasion of illegal user to or the validated users’ careless operation which damages the resources.The paper studies and analyzes the current problems of access control model based on Web Service,and presents an improved attributed-based access control model.The new model has introduced the XML encryption and the XML signature technology into the XACML access control frame,so as to guarantee the confidentiality of sensitive attribute information and the integrity of access control strategy. |
| |
| Keywords: | web service attribute access control strategy |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
