基于风险的访问控制操作需求计算方法研究  被引量:2

Research on computing method of operational need in risk-based access control

在线阅读下载全文

作  者:解文冲[1,2] 杨英杰[1,2] 汪永伟[1,2] 代向东[1,2] 

机构地区:[1]解放军信息工程大学,河南郑州450004 [2]河南省信息安全重点实验室,河南郑州450004

出  处:《计算机工程与设计》2013年第7期2281-2285,共5页Computer Engineering and Design

基  金:国家973重点基础研究发展计划基金项目(2011CB311901);国家863高技术研究发展计划基金项目(2012AA012704);河南省科技创新人才计划基金项目(114200510001)

摘  要:针对基于风险的访问控制中缺乏对操作需求详细分析与量化,在分析操作需求的基础上,提出了一种静态与动态相结合的操作需求计算方法。引入访问目的层次结构,提出目的森林的概念,并给出客体目的森林遍历算法,从而计算静态操作需求;统计客体的被访问历史,并基于EWMA给出动态操作需求的计算方法。在分析静态和动态操作需求关系的基础上,给出操作需求的计算方法。讨论和分析结果表明,该方法能够更为准确、动态地体现访问操作需求。To the deficiency of the detailed analysis and quantification of the operational need in risk-based access control, on the basis of analyzing the operational need, an operational need quantification method combining static and dynamic is proposed. Firstly, purpose hierarchy is introduced, the concept of purpose forest is presented and the object purpose forest traversing algorithm is given, which in turn computed the static operational need. Secondly, the object^s history of being accessed is counted, and then based on the EWMA, the computing method of the dynamic operational need is put forward. Finally, on the basis of analyzing the relation between the static and dynamic operational need, the computing method of the operational need is given. The discussion and analysis shows that it can reflect the access operational need more accurately and dynamically.

关 键 词:访问控制 文件保护 操作需求 目的层次结构 指数加权移动平均 

分 类 号:TP309.2[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象