检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
机构地区:[1]信阳师范学院计算机与信息技术学院,河南信阳464000
出 处:《计算机应用》2010年第7期1797-1801,共5页journal of Computer Applications
基 金:国家自然科学基金资助项目(10671166);信阳师范学院青年科研基金资助项目(200951)
摘 要:在现有基于RBAC的委托模型中,委托人由于出差或休假无法自主执行委托,然而完全依靠管理员集中式的授权管理,缺乏灵活性,且存在权限滥用的危险。结合RBAC模型,提出一种基于代理的灵活角色委托模型。给出了代理委托策略,并通过构造和规约两方法对模型的合理性与完备性进行了论证。理论分析与实例验证结果表明,该模型通过引入代理人,代表执行并对委托过程进行监督管理,能够有效地体现委托过程的灵活性,并且遵循"最小特权"和"职责分离"两安全原则。The existing delegation models based on Role-Based Access Control(RBAC) lack flexibility,and the permissions abuse may occur in case that delegators are on business or on leave,although the system administrator could accomplish delegation authorization by oneself instead of delegators.This paper presented an Agent-based flexible role delegation model based on RBAC.The delegation strategy was given and the soundness and the completeness of the model were discussed and proved by the construction and the reduction methods.The results analyzed by theories and actual examples show that,the third party(or same Agent) takes charge of delegating the permissions on behalf of the delegator and supervises the delegation authorization.Flexibility is effectively reflected in the delegation,and the model follows the two security principles: "least privilege" and "the separation of duty".
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:18.116.237.222
