计算机科学 ›› 2011, Vol. 38 ›› Issue (3): 34-39.
• 计算机网络与信息安全 • 上一篇 下一篇
李伟楠,李翰超,石文昌
出版日期:
发布日期:
基金资助:
LI Wei-nan,LI Han-chao,SHI Wen-chang
Online:
Published:
摘要: 鉴于信息流对系统完整性的影响,探讨结合信息流实施访问控制的方法,提出一种基于信息流源的访问控制(ACSIF)模型,其中,信息流源指位于信息流出发点的实体。借助用户集合表示信息流源,利用信息流源描述完整性级别,根据集合包含关系定义完整性级别的支配关系,基于信息流构造访问控制规则。通过引入完整性约束主体和约束集合增强模型的适用性。模型的实现可有效地利用系统已有信息,以降低系统配置的复杂度,提高系统的实用性。
关键词: 访问控制,信息流,信息流源,实用性
Abstract: Due to the impact of information flow on system integrity, explored ways to enforce access control with consideration of information flow. Proposed a model for Access Control based on Source of Information Flow(ACSIE),in which, source of information flow refers to the entity that is a starting point of the flow. Source of information flow was expressed via set of users. Integrity level was described through sources of information flows. Dominance relationship of integrity levels was defined according to inclusion relationship of sets. Access control rules were constructed based on information flows. Integrity constrained subjects and constrained sets were introduced to improve adaptability of the model. Existing system information may be utilized effectively in implementing the model, hence, complexity of system configuration can be reduced,and system usability can be improved.
Key words: Access control,Information flow,Source of information flow,Usability
李伟楠,李翰超,石文昌. 基于信息流源的访问控制研究[J]. 计算机科学, 2011, 38(3): 34-39. https://doi.org/
LI Wei-nan,LI Han-chao,SHI Wen-chang. Research on Access Control Based on Source of Information Flow[J]. Computer Science, 2011, 38(3): 34-39. https://doi.org/
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.jsjkx.com/CN/
https://www.jsjkx.com/CN/Y2011/V38/I3/34
Cited