摘要
WebService技术具有容异特性,在3个方面支持互操作:水平(跨越端系统)、垂直(在不同的组织层次中)和时间(跟随系统发展路线)。论文探讨了使用身份联邦的安全策略,在信息获取、处理、分发到用户终端存储的各个阶段,采用基于角色的访问控制管理机制,信息授权技术实现用户只能获取系统分配权限范围内的安全服务。
The WebService technology must accommodate heterogeneity, and support interoperability in three dimensions, horizontal(across peer systems), vertical (among different organizational levels) and temporal (along a system's evolutionary path).This paper discusses the security policy of identity commonwealth, when the information is obtained, processed, distributed to the users and stored, Role-Based Access Control mechanism is adopted. And information authorization is employed to realize that the users could only acquire the security service within the assigned privilege limits by the system manager.
出处
《信息安全与通信保密》
2009年第3期50-52,55,共4页
Information Security and Communications Privacy
