| 基于属性RBAC及委托性质的使用控制模型 |
| |
| 引用本文: | 蔡伟鸿,蔡建坤,徐涛,韦岗. 基于属性RBAC及委托性质的使用控制模型[J]. 汕头大学学报(自然科学版), 2010, 25(4): 57-65 |
| |
| 作者姓名: | 蔡伟鸿 蔡建坤 徐涛 韦岗 |
| |
| 作者单位: | [1]汕头大学计算机科学与技术系,广东汕头515063 [2]华南理工大学电子与信息学院,广东广州510640 |
| |
| 基金项目: | 国家自然科学基金-国家杰出青年科学基金项目,省部产学研合作引导项目,广东省现代信息服务业发展专项 |
| |
| 摘 要: | 针对UCON未涉及特权委托的基本特征和权限管理的缺陷,提出了基于属性RBAC的带委托性质的使用控制模型(EUCON).将角色、委托和扩展属性等要素引入到EUCON,构建了基于属性-角色的访问控制方法,提高了模型的可变性和动态性,并使用区间时序逻辑对该委托模型的完备性进行逻辑验证,最后提供了网上行政审批的实例,为模型的应用奠定了一个很好的实例基础.
|
| 关 键 词: | EUCON UCON RBAC 委托 区间时序逻辑 网上行政审批 |
Model of Attribute-RBAC with Character of Delegation Usage Control |
| |
| CAI Wei-hong,CAI Jian-kun,XU Tao,WEI Gang. Model of Attribute-RBAC with Character of Delegation Usage Control[J]. Journal of Shantou University(Natural Science Edition), 2010, 25(4): 57-65 |
| |
| Authors: | CAI Wei-hong CAI Jian-kun XU Tao WEI Gang |
| |
| Affiliation: | 1. Department of Computer Science, and Technology of Shantou University, Shantou 515063, Guangdong, China;2. School of Electronic & Information Engineering, South China University of Technolngy, Cuangzhou 510640, Guangdong, China) |
| |
| Abstract: | As UCON model does not involve the, basic characteristics of the delegation and the usage of permissions is not wcll-manage,mcnt, a new model base, d on attribute- RBAC with character of dele,gation usage control is proposed. Key elemcnts sueh as role, delegation and extendeed-attributc into usage control are, introduced. A new access control method that based on attribute-role, which makes the model more, variably and dynamically is prcsented. In addition, Interval Temporal Logic is used for logically demonstrating the completeness of EUCON model based on delegation. Finally, an application of administrative, examination and approval is articulated, offering a good example for application of EUCON. |
| |
| Keywords: | EUCON UCON RBAC delegation interval temporal logic administrative examination and approval |
| 本文献已被 维普 万方数据 等数据库收录! |
|
