摘要
在RBAC访问控制系统的安全性分析问题(RBAC-SAP)中,用户-角色分配相关的安全性分析问题(URA-SAP)是其中最重要的一个子问题,即用户-角色分配关系的变化对系统安全性的影响问题。提出了一种将URA-SAP转化为模型检测问题的自动化验证算法,实验表明采用该算法并结合现有的模型检测工具可以有效地解决URA-SAP问题。
User-role assignment security analysis is the most important thing in security analysis of in RBAC access control systems, that is to say, the changes of user-role assignment have notable impact on the system security. Based on the definition and computational complexity of this problem, an automatic verification algorithm, which translates URA-SAP into model checking problem, is proposed in this paper. Experiment indicates that this algorithm, in combination with the existing model checking tool, could effectively solve the problem of URA-SAP security verification.
出处
《信息安全与通信保密》
2010年第6期71-73,81,共4页
Information Security and Communications Privacy
基金
国家自然科学基金资助项目(批准号:60903191)
国家高技术研究发展计划(863)资助项目(编号:2007AA01Z457)