检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:WANG Xiaoming ZHAO Zongtao
机构地区:[1]College of Computer Science, Shaanxi Normal University, Xi'an 710062, China [2]Department of Computer Science, the Second Artillery Engineering College, Xi'an 710025, China
出 处:《Chinese Journal of Electronics》2006年第1期37-40,共4页电子学报(英文版)
基 金:This work is supported by the National Natural Science Foundation of China(No. 10571112).
摘 要:Service oriented applications (SOA) are quickly developing in large distributed application systems, such as Web based application system. For SOA, service oriented authorization (SOAu) can ensure that the authorized subjects may use the services and that the denied subjects can not use the ones, and it is a research topic in the area of SOA security currently. SOAu model is used to formally define and analyze SOAu policies, and it is also the bridge from SOAu policies to policy enforcement. However, the existing models of SOAu are too simple to meet SOAu requirements. In the paper, the author respectively proposes a novel service oriented voting authorization policy, a novel service oriented voting denied policy and a confliction resolution policy. In addition, the constraint of separation of duties, the constraint of binding of duties and the cardinality constraints are discussed respectively, and corresponding authorization rules are defined. The conclusion shows that SOAu model can enhance the flexibility and the security of SOAu.
关 键 词:Service oriented application (SOA) Voting authorization policy Voting denied policy CONSTRAINT RULE MODEL
分 类 号:TP3[自动化与计算机技术—计算机科学与技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.28