| 用角色模型实现传统访问控制 |
| |
| 引用本文: | 田敬东,何再朗,张毓森. 用角色模型实现传统访问控制[J]. 吉林大学学报(信息科学版), 2005, 23(3): 299-305 |
| |
| 作者姓名: | 田敬东 何再朗 张毓森 |
| |
| 作者单位: | 解放军理工大学通信工程学院,南京,210042;解放军理工大学解放军理工大学,指挥自动化学院,南京,210042 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 针对传统访问控制模型存在使用不方便等缺陷,采用RBAC(Role-Based Access Control)模型对其进行了改造,在不改变其原有安全标记的基础上,用RBAC模型实现了传统的访问控制,并给出了理论证明.结果表明,该方法既保证了传统访问控制模型在信息流控制方面的优点,又具有RBAC模型容易管理和灵活配置的特点,用角色模型可以完全取代传统的访问控制模型,这是安全模型发展的必然趋势.
|
| 关 键 词: | 访问控制 基于角色的访问控制 基于格的访问控制 强制访问控制 自主访问控制 |
| 文章编号: | 1671-5896(2005)03-0299-07 |
| 修稿时间: | 2004-08-31 |
Use Role Model to Realize Traditional Access Control |
| |
| TIAN Jing-dong,HE Zai-lang,ZHANG Yu-Sen. Use Role Model to Realize Traditional Access Control[J]. Journal of Jilin University:Information Sci Ed, 2005, 23(3): 299-305 |
| |
| Authors: | TIAN Jing-dong HE Zai-lang ZHANG Yu-Sen |
| |
| Abstract: | Traditional access-control models is not convenient to use, we adopt role-based access-control model to rebuild them. Based on unchanging the security label of the traditional access-control systems, this thesis uses role-based access-control model realized traditional access-control models, and proves it in theory. As a result, this method ensures the merit of information flow control of traditional access-control models, and has the characteristics of easy to management and flexible to configure of role-based access-control model, and then we can use role-based model to replace traditional access-control models completely, this is the certain direction of security models will develop. |
| |
| Keywords: | access-control role-based access-control (RBAC) lattice-based access-control (LBAC) mandatory access-control(MAC ) discretionary access-control(DAC) |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
