摘要
量化风险自适应的访问控制是现在系统安全领域的一个研究热点,但XACML(eXtendab le Access Control Markup Lan-guage)的实现未考虑量化风险自适应访问控制机制。在XACML的基础上,充分利用其强大的访问策略表达能力,在不改变访问请求语义的情况下加入了量化风险的控制功能,并扩展XACML框架,添加持续的访问控制风险管理机制,实现了量化风险自适应的访问控制。
Quantified risk adaptive access control is a focus of research in the field of system information security at present.But the implementations of XACML have not considered the mechanism of quantified risk adaptive access control.Based on the investigation of XACML,we make full use of its great expressing ability in access control policy to add control functions of quantified risk to the system without changing the semantics of access request.And the framework of XACML has also been extended to implement the quantified risk adaptive access control by adding durative risk management mechanism of access control.
出处
《计算机应用与软件》
CSCD
北大核心
2012年第2期285-288,293,共5页
Computer Applications and Software
关键词
可扩展的访问控制标记语言
量化风险
风险管理
eXtendable Access Control Markup Language(XACML) Quantified risk Risk management
