高级检索
    刘 武, 段海新, 张 洪, 任 萍, 吴建平. TRBAC:基于信任的访问控制模型[J]. 计算机研究与发展, 2011, 48(8): 1414-1420.
    引用本文: 刘 武, 段海新, 张 洪, 任 萍, 吴建平. TRBAC:基于信任的访问控制模型[J]. 计算机研究与发展, 2011, 48(8): 1414-1420.
    Liu Wu, Duan Haixin, Zhang Hong, Ren Ping, Wu Jianping. TRBAC: Trust Based Access Control Model[J]. Journal of Computer Research and Development, 2011, 48(8): 1414-1420.
    Citation: Liu Wu, Duan Haixin, Zhang Hong, Ren Ping, Wu Jianping. TRBAC: Trust Based Access Control Model[J]. Journal of Computer Research and Development, 2011, 48(8): 1414-1420.

    TRBAC:基于信任的访问控制模型

    TRBAC: Trust Based Access Control Model

    • 摘要: 访问控制是根据网络用户的身份或属性,对该用户执行某些操作或访问某些网络资源进行控制的过程.对现有访问控制模型进行分析,并针对其不足对RBAC模型进行了扩展,提出了基于信任的访问控制模型TRBAC(trust based access control model).该模型可以提供更加安全、灵活以及细粒度的动态访问授权机制,从而提高授权机制的安全性与可靠性.

       

      Abstract: Access control is a process which controls users to execute some operations or access some network resources according to the users identity or attribution. The discretionary access control and mandatory access control are two main access control modes which are broadly used in secure operating systems. Discretionary access control is based on user identity andor groups and mandatory access control is usually based on sensitivity labels. Neither of these two modes can completely satisfy the requirements of all access control. Discretionary access control is too loose to restrict the propagation of privileges while mandatory access control is too rigid to use flexibly. This paper analyzes current access control models, and extends the RBAC (role based access control) model aiming at its deficiency, and based on which we propose a trust based access control model (TRBAC). The TRBAC model can provide more security, flexible and fine-grained dynamic access control mechanism, and therefore improve both the security and the reliability of authorization mechanism.

       

    /

    返回文章
    返回