用基于RBAC的方法集成遗产系统的访问控制策略

计算机科学 ›› 2011, Vol. 38 ›› Issue (7): 126-129.

用基于RBAC的方法集成遗产系统的访问控制策略

李寒,郭禾,王宇新,陆国际,杨元生

(大连理工大学计算机科学与技术学院大连116024);(大连理工大学软件学院大连116620)

出版日期:2018-11-16 发布日期:2018-11-16

Using RBAC-based Approach to Integrate Access Control Policies in Legacy Systems

LI Han,GUO He,WANG Yu-xin,LU Guo-ji,YANG Yuan-sheng

Online:2018-11-16 Published:2018-11-16

摘要/Abstract

摘要： 访问控制是软件系统的重要安全机制，其目的在于确保系统资源的安全访问。针对多数遗产系统的访问控制不是基于角色的且其实现形式多样，提出了一种基于RRAC的访问控制策略集成方法。该方法将遗产系统中的权限映射为集成系统中的任务，能够在任务树和策略转换规则的基础上使用统一的形式重组访问控制策略。此外，该方法给出了一组用于实现后续授权操作的管理规则。案例分析表明，提出的方法是可行的，能够有效地集成遗产系统的访问控制策略，并将RRAC引入遗产系统的访问控制。

关键词: 基于角色的访问控制，访问控制策略，遗产系统，集成，任务

Abstract: Access control whose objective is to ensure the security of accessing to resources in software systems is an essential part for software systems. As access control policies in legacy systems seldom based on roles are represented in various forms, an RI3AC-based approach was proposed to integrate these access control policies. I}he approach maps permission of legacy systems to tasks of integrated system. Based on task trees and transformation rules of access control policy, various access control policies were reorganized in a unified form. Moreover, management rules were provided to achieve further authorization. A case study is demonstrated to depict the proposed approach is a feasible solution to integrate legacy access control policies and introduce RI3AC into legacy systems.

Key words: Role based access control, Access control policy, Legacy system, Integration, Task

李寒,郭禾,王宇新,陆国际,杨元生. 用基于RBAC的方法集成遗产系统的访问控制策略[J]. 计算机科学, 2011, 38(7): 126-129. https://doi.org/

LI Han,GUO He,WANG Yu-xin,LU Guo-ji,YANG Yuan-sheng. Using RBAC-based Approach to Integrate Access Control Policies in Legacy Systems[J]. Computer Science, 2011, 38(7): 126-129. https://doi.org/

参考文献

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed