| 一种新型访问控制模型的研究及其应用 |
| |
| 引用本文: | 李霞. 一种新型访问控制模型的研究及其应用[J]. 兰州理工大学学报, 2007, 33(4): 97-101 |
| |
| 作者姓名: | 李霞 |
| |
| 作者单位: | 西北师范大学,数学与信息科学学院,甘肃,兰州,730070;安宁职业学校,甘肃,兰州,730070 |
| |
| 摘 要: | 针对NIST RBAC参考模型的局限性和当前DBS中安全机制不足等原因,提出一种可扩展的、基于角色的、多种访问控制安全策略组合实施的EMC-RBAC访问控制模型,并将这种安全模型应用于Web数据库系统的访问控制中,建立一种基于角色的自主访问控制和基于属性标记的强制访问控制相结合的B2级Web数据库管理系统的应用原型.
|
| 关 键 词: | 访问控制实施层 访问控制判决层 访问控制器 访问请求过滤器 |
| 文章编号: | 1673-5196(2007)04-0097-05 |
| 修稿时间: | 2006-12-29 |
Research and application of a new access control model |
| |
| LI Xia. Research and application of a new access control model[J]. Journal of Lanzhou University of Technology, 2007, 33(4): 97-101 |
| |
| Authors: | LI Xia |
| |
| Affiliation: | 1. College of Mathematics and Information Science, Northwest Normal University, Lanzhou 730070, China; 2. College of Anning, Lanzhou 730070, China |
| |
| Abstract: | Aimed at the shortcomings of NIST RBAC reference model and insufficient security mechanism of database system,a new EMC-RBAC model with this security model for Web database's access controls was studied and presented,and a B2-class application prototype for Web database system was built up by means of combining RBAC and attribute-based MAC. |
| |
| Keywords: | access control enforcement facility access control decision facility access control server access filtering server |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
