检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
机构地区:[1]清华大学计算机科学与技术系,北京100084 [2]清华大学软件学院,北京100084
出 处:《计算机工程》2011年第4期275-277,280,共4页Computer Engineering
摘 要:访问控制系统需具备便携性、易用性。基于此,提出一种Windows操作系统I/O模型下的访问控制模型。该模型基于以加密文件为容器的虚拟设备,在用户态和内核态进行授权判定、透明加解密、访问重定向,可扩展为各种定制访问控制系统。根据需求进行模块设计,使用API钩子、虚拟设备驱动和过滤驱动等技术开发,测试包括性能的模型特点,并给出2种应用扩展。Portability and usability for access control systems are presented. This paper presents an access control model based on I/O model on Windows platform, which uses virtual device with encrypted file as container. It mainly relies on authorization, transparent encryption/decryption and redirection of disk access. Various access control systems can be extended from this model. It describes the design of the model according to the requirements, and illustrates the development which is composed of API Hook, virtual device driver and filter driver development. Experiments are conducted to verify the characteristics of this model including performance. Two extensions in practice are discussed as a confirmation to the extensibility.
分 类 号:TP334.4[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.15
