计算机科学 ›› 2011, Vol. 38 ›› Issue (1): 125-129.
• 计算机网络与信息安全 • 上一篇 下一篇
唐卓,刘国华,李肯立
出版日期:
发布日期:
基金资助:
TANG Zhuo,LIU Guo-hua,LI Ken-li
Online:
Published:
摘要: 多域环境下工作流访问控制策略往往表现为异构策略的时序组合,其基本需求是使访问主体在一定的时间段或者时间周期内具有对客体的访问权限。XACML在描述策略组合时,并没有体现异构策略组合时态约束。根据GTRBAC提出的时态约束种类,定义了相关时态策略并进行了图解说明;并对XACML进行了扩展,引入了相应的时态约束元素。最后,通过实例说明了扩展后的XACML能方便地描述异构的时态策略组合。
关键词: 时态约束,策略组合,XACML,工作流
Abstract: In multi-domains environment, workflow access control policy is consisted of heterogeneous temporal policies in difference autonomic domains,and its requirement is special subjects can access special objects in perodic time or duration time. While XACML specifics policy combine, it does not contains temporal constraint. Based on the kinds of temporal constraint proposed by UTRBAC, this paper defined temporal constraints policies and illustrated by figures. It is extended from XACML by introducing correspond temporal constriant elements. Finally, this paper illustrated that the extended XACML can describe heterogeneous temporal policy combine conveniently through a example.
Key words: Temporal constraint, Policy combine, XACML, Workflow
唐卓,刘国华,李肯立. 多域环境下工作流访问控制时序策略组合研究[J]. 计算机科学, 2011, 38(1): 125-129. https://doi.org/
TANG Zhuo,LIU Guo-hua,LI Ken-li. Research on Workflow Access Control Temporal Policy Combine in Multi-domains[J]. Computer Science, 2011, 38(1): 125-129. https://doi.org/
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.jsjkx.com/CN/
https://www.jsjkx.com/CN/Y2011/V38/I1/125
Cited