摘要
基于角色访问控制具有比传统自主访问控制和强制访问控制在保证企业安全方面的众多优点,从而成为企业建立安全应用的首选模型,而要确保企业安全需求和管理的有效实施,则离不开确保基于角色访问控制系统安全原则得以实施的一套强制性约束规则.文中从基于角色访问控制系统的优点出发,简要介绍了基于角色访问控制系统中引入约束的必要性,总结了基于角色访问控制系统中的不同约束的定义,阐述了基于约束的角色生成以及基于角色的约束生成的方法及意义,最后对约束研究的发展趋势进行了展望.
The advantage of employing role-based access control model in application systems is so significant than traditional discretionary access control and mandatory access control that has become the norm in enterprise security management and enterprise management products. How ever,constraints are a set of imposed rules on role-based access control in order to facilitate the security requirements of role-based access control. In this paper,the advantages of role-based access control is discussed,and then briefly introduce the constraint and give the definition for the different constraint,furthermore role mining based on constraints and constraint generation methods also are given,finally,its future direction is point out.
出处
《小型微型计算机系统》
CSCD
北大核心
2015年第9期1982-1987,共6页
Journal of Chinese Computer Systems
基金
国家自然科学基金项目(U1304619
70771043
61173170
60873225)资助
南阳师范学院创新基金项目(ZX2013013)资助
