| 基于时态的多级数据访问控制方法 |
| |
| 引用本文: | 钟勇,秦小麟.基于时态的多级数据访问控制方法[J].系统工程与电子技术,2005,27(3):516-520. |
| |
| 作者姓名: | 钟勇 秦小麟 |
| |
| 作者单位: | 南京航空航天大学信息科学与技术学院,江苏,南京,210016 |
| |
| 基金项目: | 航空科学基金资助课题(02F52033) |
| |
| 摘 要: | 传统的基于身份认证和存取控制的数据库安全机制存在一定的局限性,如无法防止合法用户权限滥用等非法行为。为对数据库存取控制作进一步的扩展,提出了一个基于时态的访问约束模型,以多级数据关系为基础,对数据的访问操作、查询基数和表关联进行约束。文中给出了模型定义、模拟实现及其编译方法,并显示出该模型具有良好的表达力和灵活性,可有效防止数据库内部权限滥用等非法行为。
|
| 关 键 词: | 访问约束 数据库安全 安全模型 时态授权 |
| 文章编号: | 1001-506X(2005)03-516-05 |
| 修稿时间: | 2003年11月15 |
Temporal multilevel data access control model |
| |
| ZHONG Yong,QIN Xiao-lin.Temporal multilevel data access control model[J].System Engineering and Electronics,2005,27(3):516-520. |
| |
| Authors: | ZHONG Yong QIN Xiao-lin |
| |
| Abstract: | There are some limitations on the traditional user identification and access control of database security mechanism, such as illegal actions of misusing the authorization of legal users. A temporal access constraint model is presented to extend the access control. This model limits the access operations, cardinal number of query and relation associations based on multilevel data relation. The definition, simulation implementation and compilation methods of the model are proposed, and its excellent expression ability and flexibility are demonstrated. The model can prevent internal misuses and other illegal actions in database effectively. |
| |
| Keywords: | access constraint database security security model temporal authorization |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
