基于受控对象的多主体访问控制模型  被引量:3

Object-based multi-subject access control model

在线阅读下载全文

作  者:李长城[1] 刘成颖[1] 洪名松[1] 蔡魏[2] 

机构地区:[1]清华大学精密仪器与机械学系,北京100084 [2]辽宁工程技术大学机械工程学院,辽宁阜新123000

出  处:《计算机集成制造系统》2005年第3期342-346,共5页Computer Integrated Manufacturing Systems

基  金:国家863/CIMS主题资助项目(2001AA412130)~~

摘  要:在研究和分析基于角色的访问控制模型、基于组的访问控制模型等的基础上,结合工艺信息管理的特点,提出了基于受控对象的多主体访问控制模型。该模型能够利用受控对象之间的继承关系对访问控制策略进行继承,同时将访问控制的主体扩展为多种,实现针对单个用户和对象实例的细粒度的访问控制,具有授权操作简单、高效和易于表达的特点。该模型在进行权限控制时考虑了执行的上下文环境,是一种动态访问控制模型。最后给出了一个应用实例。Based on study of the role-based access control (RBAC) model and the team-based access control (TMAC) model, combined with the characteristics of the technological process information management, an object-based multi-subject access control model was proposed. In this model, object's access control strategy could be inherited through the object's inheritance hierarchies and the type of access subject was expanded to more types. The model implemented a fine-grained security administration at the level of individual users and individual objects. And the access permissions were assigned effectively and were easy to be expressed. As an active security model, it considered the context of objects and users when activating the permissions. Finally, an application example was introduced to prove the feasibility and advantages of this model.

关 键 词:访问控制 工艺信息管理 基于受控对象 动态安全模型 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象