期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于属性和规则的访问控制模型 被引量:3

Access Control Model Based on Attribute and Rule
下载PDF
导出
摘要 针对分布式服务环境中用户数目大量增长和资源访问策略复杂多样化的问题,分析目前访问控制模型的应用局限性,提出多用户服务模式中一种基于属性和规则的访问控制模型。该模型引入复合属性表达式和复合权限的概念,制定授权约束规则,为用户分配多组角色。给出模型实例,并将其与其他模型进行比较。 According to the requirements of huge customers and resource's access policy diversification in distributed service environments and application limitation of access control models, this paper proposes an Attribute And Rule-based Access ControI(ARBAC) model for multiple users service mode. It introduces notions of composite attribute expression and composite permission, defines different multiple role groups and makes a finite set of rules to assign user to roles. A case study is given and the model is compared with other models.
作者 朱一群 李建华 张全海
机构地区 上海交通大学电子工程系
出处 《计算机工程》 CAS CSCD 北大核心 2008年第13期29-30,33,共3页 Computer Engineering
基金 国家自然科学基金资助项目(60402019)
关键词 多用户服务 用户角色分配 属性 规则 访问策略 multiple users service user-role assignment attribute rule access policy
分类号 TP311.13 [自动化与计算机技术—计算机软件与理论]
  • 相关文献

参考文献7

  • 1Sandhu R S, Coyne E J, Feinstein HL, et al. Role-based Access Control Models[J]. IEEE Computer, 1996, 29(2): 38-47.
  • 2Ferraiolo D F, Sandhu R, Gavrila S, et al. Proposed NIST Standard for Role-based Access Control[J]. ACM Transactions on Information and System Security, 2001,4(3): 224-274.
  • 3Mohammad A, Kahtani A, Sandhu R. A Model for Attribute-based User-role Assignment[C]//Proc. of the 18th Annual Computer Security Applications Conference. Las Vegas, USA: [s. n.], 2002.
  • 4Mohammad A, Kahtani A, Sandhu R. Induced Role Hierarchies with Attribute-based RBAC[C]//Proc. of the 8th ACM Symposium on Access Control Models and Technologies. Como, Italy: [s. n.], 2003.
  • 5Yuan Eric, Tong Jin. Attributed-based Access Control (ABAC) for Web Services[C]//Proceedings of ICWS'05. Orlando, FL, USA: IEEE Press, 2005.
  • 6Kern A, Walhorn C. Rule Support for Role-based Access Control[C]//Proc. of SACMAT'05. Stockholm, Sweden: [s. n.], 2005.
  • 7Ye Chunxiao, Wu Zhongfu. An Attribute-based Delegation Model and Its Extension[J]. Journal of Research and Practice in Information Technology, 2006, 38(1): 3-17.

同被引文献19

  • 1叶春晓,吴中福,符云清,钟将,冯永.基于属性的扩展委托模型[J].计算机研究与发展,2006,43(6):1050-1057. 被引量:17
  • 2钟勇,秦小麟,郑吉平,林冬梅.一种灵活的使用控制授权语言框架研究[J].计算机学报,2006,29(8):1408-1418. 被引量:15
  • 3傅鹤岗,李竞.基于属性的Web服务访问控制模型[J].计算机科学,2007,34(5):111-114. 被引量:11
  • 4Li Ning, Mitchel J C, Winsborough W H. Design of a role-based trust management framework. Proc of the 2002 IEEE Symposium on Security and Privacy: IEEE Computer Society Press, May 2002.
  • 5Yuan E, Jin Tong. Attribute based access control (ABAC) : a new access control approach for service oriented architectures. Ottawa New Challenges for Access Control Workshop,2005:359--363.
  • 6Yuan E, Jin Tong. Attributed based access control (ABAC) for web Services. Proceedings of the IEEE International Conference on Web Services ( ICWS'05 ) ,2005 ;7:560--569.
  • 7Barker S, Stuckey P J. Flexible access control policy specification with constraint logic programming. ACM Trans Inf Syst Secur,2003 ;6 (4) : 501--546.
  • 8LI Ninghui, Mitchell J C. Datalog with constraints: a foundation for trust-management languages. Proceedings of the Fifth International Symposium on Practical Aspects of Declarative Languages ( PADL 2003 ). New Orleans, Louisiana, 2003:28--73.
  • 9Zhang Xinwen, Parisi-Presicce F, Sandhu R, et al. Formal model and policy specification of usage control. ACM Transactions on Information and System Security (TISSEC) ,2005; 8(4) : 351--387.
  • 10Sandhu R, Coyne E, Feinstein H, et al, Role-Based Access Control Models[J]. IEEE Computer, 1996, 29(2): 38-47.

引证文献3

二级引证文献6

计算机工程
2008年 第13期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部