摘要
访问控制是信息系统的一个重要安全保护机制 访问控制规定了主体对客体访问的限制 ,合法的用户可以访问数据项 ,非法的用户将被禁止 ,访问控制矩阵确定主体对客体的访问权利 主要讨论了工作流执行时的访问控制问题 ,提出了一种基于工作流状态的动态访问控制机制 同时还给出了工作流的Petri网描述 ,在此基础上 。
Access control is an important protection mechanism for information systems Access control enforces subjects access restrictions to objects Legitimate users should be allowed to access data items and illegitimate users should be detained from data access An access control matrix grants subjects access rights to objects In this paper the problem of access control on the executions of workflows are discussed A dynamic access control mechanism based on the state of workflows is proposed The specification of workflows by Petri nets is also given Based on the formal specification, it is proven that by using this dynamic access control the risk of data misuse is decreased
出处
《计算机研究与发展》
EI
CSCD
北大核心
2003年第3期417-421,共5页
Journal of Computer Research and Development
基金
国家"八六三"高技术研究发展计划基金 ( 2 0 0 1AA14 2 110 )
