摘要
介绍了访问控制领域的研究现状,详细分析了Linux操作系统原有的访问控制机制。分析和比较了一些常用访问控制,对其存在的缺点举例说明并进行了讨论。在操作系统现有的访问控制基础上,结合基于角色的访问控制和基于进程的访问控制这两种机制的优点,提出了新型的基于角色-进程的访问控制机制,并对其进行形式化描述,从静态和动态两方面使操作系统的安全性得到加强,并指出下一步工作的任务。
The current research in access control area and primary access control of Linux is firstly introduced. With the comparison and examples, the existing flaws about access control are discussed. On the basis of role-based access control (RBAC) and process-based access control (PBAC) of current operating system, a new mechanism called role-process-based access control (RPBAC) is presented, which is defined formally. The security of operating system is enhanced by the help of static and dynamic method. The task of follow work is also discussed in the end.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第13期3283-3285,共3页
Computer Engineering and Design
基金
国家863高技术研究发展计划基金项目(2006AA01Z406)
关键词
操作系统安全
角色
进程
访问控制
基于角色-进程的访问
operating system security
role
process
access control
role-process-based access control
