摘要
Clark-Wilson完整性策模型在商业安全领域可以有效满足企业信息系统所追求的完整性安全需求。但是直接将用户和权限关联,给权限的管理带来不便;对权限不加以时间约束,会带来安全隐患;在用户同谋的情况下,模型还会失效。基于上述缺陷,在用户和权限之间引入角色的概念,用户可以在受约束的情况下激活自己拥有的角色从而获得相应的权限,使Clark-Wilson完整性策略模型更具有安全特性。
In commerce security field, Clark-Wilson integrity model can meet integrity need of enterprise information system. But it associated user with permission directly, so it is very difficult to manage permissions; the permissions are not restricted by the time, which may bring safe problems; if the users collude together, the model will be invalidation. For the above limitations, Clark-Wilson integrity model will have more safety characteristic by importing the role between users and permissions when user can activate roles under some constraints.
出处
《微电子学与计算机》
CSCD
北大核心
2007年第7期128-131,共4页
Microelectronics & Computer
基金
国家自然科学基金项目(10571112)
陕西省自然科学基金项目(2006F27)
