| 基于粒度的访问控制冲突分析及解决办法 |
| |
| 引用本文: | 邬小鲁,沈琳.基于粒度的访问控制冲突分析及解决办法[J].舰船电子工程,2007,27(2):95-97. |
| |
| 作者姓名: | 邬小鲁 沈琳 |
| |
| 作者单位: | 武汉大学国际软件学院,武汉,430079 |
| |
| 摘 要: | 访问控制规范了安全域中合法用户访问与操作资源的行为,保证资源不被非授权用户使用,从而起到保护资源的作用。访问控制粒度指明系统为用户授权的层次,如目录级授权与文件级授权等。当不同粒度安全域的用户进行资源互访时,则易造成访问权限的缩放以及授权的冲突等问题。分析不同粒度访问控制的特点,指出冲突产生的原因。同时,提出跨域资源访问应遵守的规则。根据这些原则,给出因访问控制粒度而引起的冲突解决方法。
|
| 关 键 词: | 访问控制 粒度 证书 授权 策略 |
| 修稿时间: | 2006-10-09 |
Research on Access Control Conflict Based on Granularity and Its Solution |
| |
| Wu Xiaolu,Shen Lin.Research on Access Control Conflict Based on Granularity and Its Solution[J].Ship Electronic Engineering,2007,27(2):95-97. |
| |
| Authors: | Wu Xiaolu Shen Lin |
| |
| Abstract: | Access control regulates legitimate users' access and operation towards resources, so as to prevent resources from unauthorized access. Access control granularity specifies the authorization level which administrative domain provides service for users, such as directory authorization level, file authorization level etc. When users with different access granularity share resources, it easily lends to some problems such as privilege's change or conflicts. The paper analyzes the features of access control system with different granularity, points out how conflicts produce. Meanwhile, some rules that administrative domain should observe are proposed, and a solution is given towards access control granularity. |
| |
| Keywords: | access control granularity credential authorization policy |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
