检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:刘武[1] 段海新[1] 张洪[1] 任萍[2] 吴建平[1]
机构地区:[1]清华大学信息网络工程研究中心,北京100084 [2]重庆师范大学经济与管理学院,重庆400047
出 处:《计算机研究与发展》2011年第8期1414-1420,共7页Journal of Computer Research and Development
基 金:国家"九七三"重点基础研究发展计划基金项目(2003CB314800;2009CB320505);重庆市科技攻关基金项目(CSTC2011AC2143)
摘 要:访问控制是根据网络用户的身份或属性,对该用户执行某些操作或访问某些网络资源进行控制的过程.对现有访问控制模型进行分析,并针对其不足对RBAC模型进行了扩展,提出了基于信任的访问控制模型TRBAC(trust based access control model).该模型可以提供更加安全、灵活以及细粒度的动态访问授权机制,从而提高授权机制的安全性与可靠性.Access c network resources mandatory access ontro accor contr lS a ng process which controls users to exe to the users' identity or attribution. are two main access control modes operating systems. Discretionary access control access control is usually based on sensitivity lab the requirements of all access control. Discr cute some operations or access some The discretionary access control and which are broadly used in secure is based on user identity els. Neit etlonary her of these two access control and/or groups and man modes can completely is too loose to restri datory satisfy ct the propagation of privileges while mandatory access control is too rigid to use flexibly. This paper analyzes current access control models, and extends the RBAC (role based access control) model aiming at its deficiency, and based on which we propose a trust based access control model (TRBAC). The TRBAC model can provide more security, flexible and fine-grained dynamic access control mechanism, and therefore improve both the security and the reliability of authorization mechanism.
分 类 号:TP393.07[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.7
