摘要
当前随着大规模网络应用的不断出现,特别是大规模的存储需求,分布式系统和虚拟存储系统也随之诞生,以Linux为开发平台的分布式系统也成为当今主流。而如何保证大量存储资源的安全性成为当今研究的热点。细粒度的自主访问控制是操作系统安全增强方法中经常采用的技术,访问控制列表ACL是其中最主要且流行的技术。以ext2文件系统为例介绍了ACL的具体实现方法和主要数据结构.并以此为基础讨论了ACL在数字有机体系统上的设计与实现。
With the large-scale network applications and storage requirement emerging, distributed system and virtual storage system was born.The most popular distributed system is resreached based on Linux. And the security of resources in distributed system become more and more important. The fine grained DAC (Discretionary Access Control) is one of often used security enhancing technique of operating system. ACL is main and popular technique of it.Describes the implementation and main data structure of ACL based on ext2 filesystem, and also discusses the design and implementation of ACL based on the Digital Organization System.
作者
肖啸
刘心松
XIAO Xiao, LIU Xin-song (School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu 610054,China)
出处
《电脑知识与技术》
2009年第4期2591-2593,共3页
Computer Knowledge and Technology