摘要
针对面向服务环境中用户数量大量增长和资源访问策略日益复杂多样化的需求,分析国内外相关研究的发展和局限性,提出了面向多策略服务的一种基于属性角色访问控制模型。该模型根据多策略中用户属性和资源属性的关系,定义多组用户角色,制定相应规则,分配用户角色,满足访问策略多样化的需求,增强了系统管理灵活性,提高系统效率。给出了模型实例分析,并对国内外相关模型进行了比较。
In accordance with the increasing customers and the various resource access policies in service-oriented environments, the limitation of the related research is anallyzed, and a multi-policy services-oriented attribute-based role-based access control(AB-RBAC) model is proposed. Based on the relationship between the resource attribute and the user attribute in muhi-policies, different role groups are defined, and relevant rules are made. User-rde assignment is realized based on a finite set of rules, and the requirement of multiple access policies is satisfied. The flexibility of access control is enhanced,and the efficiency of the system is improved. A case that uses the AB-RBAC model is described, and a detailed comparison among several models is made, which clearly shows the advantages of AB-RBAC.
出处
《计算机应用与软件》
CSCD
北大核心
2008年第11期143-145,共3页
Computer Applications and Software
