摘要
针对分布式信息系统的资源共享及安全互操作问题,在多级安全模型基础上加入管理平台和中间件模块,提出一种适用于分布式系统的多级安全访问控制策略,保证数据机密性和访问过程安全可控。用XACML语言对安全策略进行标准化描述,并对策略进行安全性和灵活性分析。
A multilevel secure access control strategy for distributed system was proposed, which could guarantee the data confidentiality and security, through adding platform and middleware modules. The security policy was de- scribed in the XACML language, and the security and flexibility of the policy were analyzed.
作者
马铭鑫
史国振
王亚琼
王豪杰
成文文
MA Ming-xin SHI Guo-zhen WANG Ya-qiong WANG Hao-jie CHENG Wen-wen(School of Cyber Engineering, Xidian University, Xi'an 710071, China School of Information Security, Beijing Electronic Science and Technology Institute, Beijing 100070, China School of Telecommunications Engineering, Xidian University, Xi'an 710071 Chin)
出处
《网络与信息安全学报》
2017年第8期28-34,共7页
Chinese Journal of Network and Information Security
基金
国家重点研发计划基金资助项目(No.2016YFB0800304)
北京市自然科学基金资助项目(No.4152048)~~
