摘要
授权模块是SSL VPN系统的基础模块,主要是对系统内的用户进行访问控制。动态授权模型是在RBAC的基础之上,为了满足SSL VPN系统的访问控制需求,引入了客户端的安全状态值,根据用户的角色和安全状态值来判定用户的最终访问权限,用于控制不同安全状态客户端的访问请求,进一步提高了SSL VPN系统的安全性能。
The authorization module is the basic module of SSL VPN(security socket layer virtual private network)system,which mainly executes the control of user access in the system. The dynamic authorization model is based on the RBAC to meet the needs of access control in SSL VPN system. The safety state value in the client is introduced in the system to determine the final access authority according to the user′s role and safety state value. It is used to control the client access requests in different security status,so as to further improve the safety performance of SSL VPN system.
出处
《现代电子技术》
2014年第21期92-93,97,共3页
Modern Electronics Technique
关键词
SSL
VPN系统
动态授权
RBAC
安全状态
SSL VPN system
dynamic authorization
role-based access control
security state
