摘要
多个管理域间的安全互操作是一个重要的研究内容。IRBAC2000模型通过关联进行动态角色转换,从而实现两个管理域间的安全互操作。关联是IRBAC2000模型的最重要组成部分,对动态角色转换的安全和效率有着重大的影响。因此,合理管理IRBAC2000模型中的关联是十分重要的。首先分析了关联管理面临的问题:一是导致安全漏洞的冲突关联;二是降低动态角色转换效率和带来管理麻烦的冗余关联。然后探讨了解决上述问题的方法,从而对关联的管理进行了优化。
Secure interaction and interoperability between administrative domains is a major concern.The IRBAC 2000 model accomplishes secure interaction and interoperability by flexibly dynamic inter-domain role translations through associations.Associations are key component of the IRBAC 2000 model and have great impact on security and efficiency of dynamic role translations.Therefore,it is very important to manage the associations in the IRBAC 2000 model.In this paper,we firstly analyze the scenarios under which there are some matters with administration of associations.One such scenario is where conflicting associations may result in a security hazard.Another is where redundant associations may reduce the efficiency of dynamic role translations and increase the difficulty of management of associations.Then we discuss the approaches how to resolve these above problems so as to optimize the management of associations,
出处
《计算机工程与应用》
CSCD
北大核心
2006年第18期130-132,163,共4页
Computer Engineering and Applications
基金
湖南省自然科学杰出青年基金资助项目(编号:03JJY1012)
关键词
IRBAC
2000模型
冲突关联
冗余关联
先决条件
IRBAC 2000 model,conflicting associations,redundant associations,prerequisite conditions