摘要
为解决安全标记与多类型数据客体绑定的灵活性、一致性不足以及强制访问控制实施粒度粗的问题,提出一种基于XML的多类型数据客体强制访问控制模型。使用XML格式统一表示异构数据客体,引入多级XML文档概念,实现数据客体与安全标记的绑定,在此基础上实施多类型数据客体强制访问控制。该模型基于XML格式,实现了数据客体与安全标记绑定的统一,解决了多级信息系统间异构数据访问控制难的问题,可以实施粒度更细的访问控制,提高了数据客体的利用率,降低了安全标记绑定的复杂度。
To solve the problem that binding security label to multi-type data obj ect is lacking of flexibility,consistency and the problem of coarse granularity of mandatory access control implementation,a multi-type data obj ects mandatory access control model based on XML was put forward.The model unified represent heterogeneous data obj ects using XML format,introduced the concept of multi-level XML document to achieve the binding of data objects with security label,and based on these implemented the multi-type data objects mandatory access control.The model achieves unified security label binding based on XML,it not only overcomes the access control difficulty among multi-level information systems,but achieves more granular access control, which improves data obj ects utilization while reducing the complexity of the security label binding.
出处
《计算机工程与设计》
北大核心
2015年第2期335-340,362,共7页
Computer Engineering and Design
基金
国家863高技术研究发展计划基金项目(2012AA012704)
河南省科技创新人才计划基金项目(114200510001)
