摘要
讨论了基于角色的访问控制策略在多域安全应用中的互操作问题 ,提出了多域应用环境下角色映射的概念 ,建立了一个基于角色的组合层次关系的多域授权管理模型 ,通过约束条件和授权步给出了跨域用户的授权访问控制策略 ,实现了多域环境的安全互操作 .该模型不仅使授权机制易于实现 ,而且可以灵活地适应应用中安全需求的变化 .
This paper discussed the secure interoperability in multi-domain application. Based on RBAC access control model, a concept of role translation within multi-domain application environment was proposed. A multi-domain authorization management model of combined hierarchy based on RBAC was established and User-Role assignment over cross-domain was given through constraints and authorization steps. This model is not only easily realized, but also is flexibly adapted to the change of security requirement in applications.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2003年第11期4-6,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金
国家高技术研究发展计划资助项目
关键词
授权管理模型
安全互操作
多域应用
授权步
authorization model
secure interoperability
multi-domain
authorization step