本文已被:浏览 1522次 下载 2次
投稿时间:2005-12-22
投稿时间:2005-12-22
中文摘要: 为了管理多应用层系统中的资源权限,充分利用RBAC在安全管理中的优势,提出了一个将RBAC融于多应用层的安全模型——Multi RBAC。它将RBAC合理实施到系统的各个应用层,管理位于不同应用层的系统资源权限。由于角色由各应用层的资源访问权限来定义,使角色划分更加合理、粒度更小,也更容易实现权限最小原则。同时,可充分结合各种先进的RBAC模型,满足多应用层下各种安全需求。在实现上,应用Multi RBAC成功开发并实施了一套CIMS安全管理系统,表明该模型是可行的。
中文关键词: 基于角色的访问控制 安全模型 应用层 多应用层CIMS系统
Abstract:In order to manage the privileges in multi application layers system and make use of the advantage of RBAC in security management, Multi-RBAC, a RBAC model that can be applied in all application-layers was presented. It was applied to all application-layers of system to protect the resources in different layers. Since the roles were defined by the resource privilege in different layers, the Multi RBAC made the classifying of roles more reasonable, the granularity less and the realization of least-privilege principle easier. Furthermore, all requirements of security can be satisfied with the help of other advanced RBAC model. In application, a security management system of CIMS was developed and applied successfully, which showed that the model is feasible.
keywords: role-based access control security model application-layer multi-application-layers CIMS system
文章编号:20070226 中图分类号: 文献标志码:
基金项目:国家863/CIMS主题资助项目(2003AA411210)
作者简介:
引用文本:
刘孝保,杜平安.基于角色的访问控制在多应用层CIMS中的应用[J].工程科学与技术,2007,39(2):140-144.
.Application of Role based Access Control inMulti-application layers CIMS System[J].Advanced Engineering Sciences,2007,39(2):140-144.
引用文本:
刘孝保,杜平安.基于角色的访问控制在多应用层CIMS中的应用[J].工程科学与技术,2007,39(2):140-144.
.Application of Role based Access Control inMulti-application layers CIMS System[J].Advanced Engineering Sciences,2007,39(2):140-144.