检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
出 处:《小型微型计算机系统》2014年第3期493-499,共7页Journal of Chinese Computer Systems
基 金:国家"八六三"高技术研究发展计划项目(2007AA01Z479)资助
摘 要:针对开放网络环境下重要信息系统资源高安全等级的访问控制需求,提出一种基于环境度量和行为评估的访问控制模型,该模型基于环境信任度对终端计算环境进行安全分级,基于多实体贝叶斯网络综合用户行为的多种属性对用户行为实施动态评估,整合了环境可信度和行为模式、资源访问、系统运行状态等行为表现属性,能较全面地对用户行为进行评估;模型采用条件规则和授权规则相结合的安全规则,实现对资源访问行为动态的访问控制.与现有的模型相比,提出的访问控制模型能够更好地适应环境的多变性和用户行为的复杂性,信任评价方法更具有可计算性和合理性.To meet the high level of security access control requirements in critical information systems in open network environment, proposed an access control model based on environment and behavior assessment. The model classified the security of terminal envi- ronment based on environmental measurements, and assessed user behavior combined of variety of behavior properties based on Multi- Entity Bayesian Network. Integrated the attribute of behavior representation with environmental measurements, behavior model, re- source access, status of system running, etc., User behavior can he accessed in the round. Using security rules combined of the con- dition rules and authorization rules achieved dynamic access control for resources access. Compared with existing models, the pro- posed access control model was better able to adapt to the complexity of the environment and variability of the users' behavior. The trust evaluation method is more computational and rationality.
分 类 号:TP311[自动化与计算机技术—计算机软件与理论]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.38