本文已被:浏览 1676次 下载 3537次
Received:December 20, 2009 Revised:March 14, 2010
Received:December 20, 2009 Revised:March 14, 2010
中文摘要: 在基于角色的访问控制(RBAC)策略中,用户的身份识别口令可能会因为意外泄露或者他人盗取而使数据信息不安全,因此需对访问过程中的用户行为实施控制。提出了一种可信度动态调节的RBAC策略模型。该模型将可信计算技术与访问控制策略有机地结合,采用层次分析法对系统可信度进行评估;通过引入动态调节可信度,将用户的可信度作为系统在进行用户角色指派时的依据。实验将此模型应用于数据库环境中仿真,结果表明,该策略模型通过实施层层可信的访问控制,最终有效地提高了数据库访问的安全性。
Abstract:The disclosure of user identification password can endanger information data in a role-based access control (RBAC) policy. In order to achieve access control action for the users, a RBAC policy on dynamically adjustable trust degree is proposed. The policy combines a trusted computing theory with access control policy. Firstly, an analytical hierarchy process is adopted to evaluate the trust degree of the system. Then, a dynamical regulation method of a trust degree is introduced to make the user’s trust degree a foundation of the system while assigning user's roles. This model is applied to a virtual database experiment. The result shows that through the implementation of the trusted access control, it is possible to effectively improve the security of database.
keywords: access control trust degree RBAC trusted computing
文章编号: 中图分类号: 文献标志码:
基金项目:国家自然科学基金(90718034,60773013)
| Author Name | Affiliation |
| HU Xi-Ling | 中南大学 计算机科学与技术系 湖南 长沙 410083 |
| WANG Guo-Jun | |
| DENG Yue-Ming |
| Author Name | Affiliation |
| HU Xi-Ling | 中南大学 计算机科学与技术系 湖南 长沙 410083 |
| WANG Guo-Jun | |
| DENG Yue-Ming |
引用文本:
胡细玲,王国军,邓月明.一种可信度动态调节的RBAC策略模型.计算机系统应用,2010,19(9):49-54
HU Xi-Ling,WANG Guo-Jun,DENG Yue-Ming.RBAC Model on Dynamically Adjustable Trust Degree.COMPUTER SYSTEMS APPLICATIONS,2010,19(9):49-54
胡细玲,王国军,邓月明.一种可信度动态调节的RBAC策略模型.计算机系统应用,2010,19(9):49-54
HU Xi-Ling,WANG Guo-Jun,DENG Yue-Ming.RBAC Model on Dynamically Adjustable Trust Degree.COMPUTER SYSTEMS APPLICATIONS,2010,19(9):49-54
