北京航空航天大学学报 ›› 2011, Vol. 37 ›› Issue (7): 901-906.

• 论文 • 上一篇    

基于上下文感知和用户组的访问控制模型

姚全营, 姚淑珍, 黄河, 谭火彬   

  1. 北京航空航天大学 软件学院, 北京 100191
  • 收稿日期:2010-07-08 出版日期:2011-07-30 发布日期:2011-08-04
  • 作者简介:姚全营(1986-),男,河北霸州人,硕士生,quanying.yao@hotmail.com.
  • 基金资助:

    国防"十一五"基础研究基金资助项目

Context aware and group based access control

Yao Quanying, Yao Shuzhen, Huang He, Tan Huobin   

  1. School of Software, Beijing University of Aeronautics and Astronautics, Beijing 100191, China
  • Received:2010-07-08 Online:2011-07-30 Published:2011-08-04

摘要: 传统的基于角色的访问控制(RBAC,Role Based Access Control)主要依靠对主题赋予相应的角色来实现对资源的保护,在权限控制时没有考虑执行的上下文环境,也没有考虑在系统中的用户是如何组织和管理的.为了适应应用环境的动态要求,并且方便用户的管理,提出了基于上下文感知和用户组的访问控制(RGBACC,Role and Group Based Access Control with Context)模型,RGBACC将上下文感知和用户组管理加入到RBAC模型中,从应用环境中获取与安全相关的上下文信息来动态地改变用户的权限,并且可以对具有统一职能的用户进行统一管理,同时还保留了传统RBAC模型的优点.

Abstract: Role based access control(RBAC) mainly depend on role given by the theme to achieve the protection of natural resources. In the control of the permissions, execution context, how the customs organize and manage were not taken into account.In order to adapt dynamic requirements of the application environment and to make the management of customs more convienent, RGBACC model was put forward. RGBACC model add "context-aware"and "user group management" to RBAC model. The context information ralated security from application environment was obtained to dynamically change the user-s permission. To the customs who have the same function, RGBACC model can manage them unifiedly,at the same time,it maintain the advantagement of traditional RBAC model.

中图分类号: 


版权所有 © 《北京航空航天大学学报》编辑部
通讯地址:北京市海淀区学院路37号 北京航空航天大学学报编辑部 邮编:100191 E-mail:jbuaa@buaa.edu.cn
本系统由北京玛格泰克科技发展有限公司设计开发