摘要
网络资源需要在安全策略控制下共享与互操作。针对多异构安全域域间资源互操作的安全问题,提出了一种基于RBAC安全策略的跨域网络资源的安全互操作模型。首先引入域间角色的概念,并定义跨域资源共享访问的要求;其次在跨域操作准则的基础上,提出异构域间资源安全互操作模型和访问算法;最后以实例场境对模型和算法进行了应用分析。结果表明,该方法针对性强,权限控制有效,为实现多域资源共享和互操作的安全保障提供了一种可行的途径。
Network resources are in need of sharing and interoperability under the control of security policy. Aiming at the interoperability security problem of the resources among the heterogeneous security domains,a security interoperation model of accessing to cross-domain network resources based on RBAC security policy was proposed. Firstly, the concept of inter-domain role was introduced, and the requirement of accessing to cross-domain resources sharing was defined. Secondly, based on the cross-domain operation criteria, the security interoperation model and access algorithm of heterogeneous inter domain resources were put forward. Finally, The model and algorithm were analyzed through the application environment of a real project case. Results show that this method has the characteristics of high pertinence and effective access control, and provides a feasible way for the security implementation of resources sharing and interoperation.
出处
《计算机科学》
CSCD
北大核心
2016年第6期141-145,共5页
Computer Science
基金
国家自然科学基金(61462020
61163057
61363006)
广西自然科学基金(2014GXNSFAA118375)
广西信息科学实验中心基金(20130329)
广西可信软件重点实验室基金
广西高等学校高水平创新团队及卓越学者计划资助
关键词
异构
跨域
安全域
安全互操作
网络安全
Heterogeneous, Cross-domain, Security domain, Security interoperation, Network security
