检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:上超望[1] 刘清堂[1] 赵呈领[1] 童名文[1]
机构地区:[1]华中师范大学信息与新闻传播学院,湖北武汉430079
出 处:《计算机应用与软件》2014年第5期14-16,135,共4页Computer Applications and Software
基 金:国家"十二五"科技支撑计划课题(2012BAD35B02);华中师范大学中央高校基本科研业务费资助项目(CCNU11A01042)
摘 要:业务流程访问控制机制是组合Web服务安全应用中的难点问题。针对现有研究不足,提出基于活动授权的Web服务业务流程动态访问控制模型AACBP(Activity Authorization Based Dynamic Access Control Model for BPEL4WS)。通过解除组织模型和业务流程模型间的耦合关系,AACBP将活动授权作为BPEL4WS(Business Process Expression Language for Web Services)活动访问控制实施的基本单元。依据活动实例动态感知上下文,AACBP细粒度约束活动访问授权,实现授权流与业务流程执行同步。最后给出AACBP模型在Web服务安全组合中的实施机制。Business process access control mechanism is a difficult problem in composite web services security applications. Considering the deficiency in current researches,an Activity Authorization Based Dynamic Access Control Model for BPEL4WS( AACBP) is proposed. By dissolving the coupling relationship between the organization model and the business process model,AACBP utilizes activity authorization as the basic unit to implement BPEL4WS access control. Through the activity instances,the model implements fine-gained access control of the activities,and realizes the synchronization of authorization and business process execution. At last,the paper also describes the implementation architecture of AACBP model in web services secure composition.
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.7