摘要
为解决Web Services访问控制问题,分析了传统访问控制模型在Web Services应用中的不足,给出了面向Web Services的基于属性的访问控制模型ABAC(Attribute Based Access Control)的定义,设计了ABAC访问控制架构,并利用可扩展的访问控制标记语言XACMLe(Xtensible Access Control Markup Language)实现了细粒度的Web Services访问控制系统。系统的应用有效保护了Web Services资源。
To deal with access control for web services,the problem of application of traditional access control model in web services is analysed,then the definition of web services-oriented attribute-based access control(ABAC) model is presented,and the architecture of ABAC is designed.Furthermore,the fine-grained access control system for web services is implemented with XACML,the application of the system has effectively protected the resources of web services.
出处
《计算机应用与软件》
CSCD
北大核心
2012年第2期83-85,104,共4页
Computer Applications and Software
基金
国家高技术研究发展计划项目(2009AA01Z438)