期刊文献+

权限的语义及基于XML的授权信息描述

The Semantic of Permission and XML-based Description of Authorization Information
下载PDF
导出
摘要 本文介绍一种支持多个应用系统集成环境下的进行统一用户授权管理所必须的授权信息通用化表示方案.文中首先通过对构成权限对象及其操作的语义进行分析,指出对象的操作属性应由操作类型、操作值和操作语义构成;从而得到权限的通用化描述方法.本文接着介绍了利用XML来描述基于RBAC模型中与权限相关的授权数据的方法,从而可以实现在多应用系统集成环境下的权限自动识别. This article introduces XML-based description schema of authorization information which should be fulfilled in the unifying user authorization management in the multi-application integrating environment. Firstly, It analyses the semantic of permission which composite of a object and its operating attributes, and points out the attribute of a objects operation consist of its type, value and semantic; so the description schema of permission is made. Next, the description schema of RBAC-based authorization information with XML is also made, which will provide the capability of auto-recognition of permission in the multi-application integrating environment.
作者 林荣德
机构地区 华侨大学数学系
出处 《漳州师范学院学报(自然科学版)》 2004年第1期22-26,50,共6页 Journal of ZhangZhou Teachers College(Natural Science)
基金 华侨大学自然科学基金资助(03HZR20)
关键词 权限 XML 授权信息描述 通用化描述 RBAC模型 应用系统集成 用户授权管理 universal description of permission semantic of permission application Integrating
  • 引文网络
  • 相关文献

参考文献4

  • 1[1]Sandhu,R.,Coyne,E.,Feinstein,H.,and Youman,C.Role-based access control model,IEEE Computer,29(2),(February 1996).
  • 2[2]Yao,W.,Moody,K.,Bacon,J.A model of OASIS role-based access control and its support for active security.SACMAT'01(Chantilly VA,May 2001).
  • 3[3]Yuhui Zhong,Bharat Bhargava.Authentication-driven Authorization on Web Access.Proceeding of International conference on Internet Computing(IC'2001),Las Vegas,June 2001.
  • 4[4]Jason Crampton.On Permissions,Inheritance and Role Hierarchies.Proceedings of 10th ACM Conference on Computer and Communications Security(CCS2003).

相关主题

;
使用帮助 返回顶部