摘要
就如何评价访问控制模型,用基于N维安全熵的方法进行量化分析研究。首先,根据信息论中对信息熵的定义和描述,介绍了自主访问控制模型的N维安全熵定义。然后以N维安全熵的方法对RBAC模型的安全性进行量化分析。为了解决管理信息系统中的多类别、多层次角色访问的安全性度量问题,提出了扩展的RBAC访问控制(EXRBAC)模型,并用N维安全熵的方法进行了量化分析。最后对这三种访问控制模型的安全性进行分析和比较,结果显示,在多类别、多层次角色访问前提下,扩展的RBAC模型其安全性有明显提升。
On how to evaluate the performance of access control models, a method of N-dimensional security entropy is introduced in this paper. According to the definition and description of the information entropy in information theory, the N-dimensional security entropy in Self-access Control model is discussed firstly. Then, by means of the N- dimensional security entropy, the quantitative security performance is measured in RBAC access control model. In order to solve the security performance measurement with "complex roles access" in the management information systems, an extension of RBAC access control (EXRBAC) model is proposed in this paper and analysis quantitative with N-dimensional security entropy methods. Through analyzing and comparing the security performance of these three access control models, it is shown that the performance of EXRBAC model is improved under the conditions of multi-class and multi-level roles
出处
《传感器世界》
2014年第7期7-11,4,共6页
Sensor World
