高级搜索

留言板

尊敬的读者、作者、审稿人, 关于本刊的投稿、审稿、编辑和出版的任何问题, 您可以本页添加留言。我们将尽快给您答复。谢谢您的支持!

姓名
邮箱
手机号码
标题
留言内容
验证码

企业门户中基于令牌的角色访问控制模型

朱晓洁 熊璋 吴晶

downloadPDF
文章导航 > 北京航空航天大学学报  > 2006 >  32(07): 873-876.
朱晓洁, 熊璋, 吴晶等 . 企业门户中基于令牌的角色访问控制模型[J]. 北京航空航天大学学报, 2006, 32(07): 873-876.
引用本文: 朱晓洁, 熊璋, 吴晶等 . 企业门户中基于令牌的角色访问控制模型[J]. 北京航空航天大学学报, 2006, 32(07): 873-876.
shu
Zhu Xiaojie, Xiong Zhang, Wu Jinget al. New model for token role-based access control on enterprise portal[J]. Journal of Beijing University of Aeronautics and Astronautics, 2006, 32(07): 873-876. (in Chinese)
Citation: Zhu Xiaojie, Xiong Zhang, Wu Jinget al. New model for token role-based access control on enterprise portal[J]. Journal of Beijing University of Aeronautics and Astronautics, 2006, 32(07): 873-876. (in Chinese)
shu

企业门户中基于令牌的角色访问控制模型

  • 北京航空航天大学 计算机学院, 北京 100083

基金项目: 国家高技术研究发展计划(863计划)资助项目(2002AA113070)
详细信息
    作者简介:

    朱晓洁(1982-), 女, 湖南湘潭人, 硕士生, zhu xiaojie@hotmail.com.

  • 中图分类号: TP 309.2

New model for token role-based access control on enterprise portal

  • School of Computer Science and Technology, Beijing University of Aeronautics and Astronautics, Beijing 100083, China

    摘要
  • 摘要: 企业门户中用户和访问权限管理的研究是一项复杂且具挑战性的工作.传统的基于角色的访问控制模型(RBAC,Role-Based Access Control)在实现上通常受单一系统和应用的约束,因此提出了一种基于令牌的角色访问控制模型(TRBAC,Token Role-Based Access Control).该模型采用门户平台下的单点登录(SSO,Single Sign On)技术,将RBAC模型与令牌访问机制相结合,使角色能跨越门户平台下所有的Web应用.该模型是一个动态激活的模型,根据用户实际的访问需求动态激活相应角色,为用户管理和访问控制管理提供了一个新的解决方案.TRBAC模型具有统一的用户安全管理标准,支持集中审核和控制.实践表明,采用TRBAC 模型提高了系统的访问效率,保证了系统的安全性.

     

    Abstract: Manage users and access rights are a complex and challengeable job in enterprise portal. Importing the role concept may simplify the access control, but its implementation is usually constrained by the single system and application. A new model,TRBAC(token role-based access control), was proposed for RBAC(role-based access control)on enterprise portal, which integrated the SSO(single sign on) technology and combined the RBAC model with token access mechanism. The role could span all web systems in portal. It was a token-based and dynamic-activated access control model, which could dynamically adjust the access rights according to user access requirement. It solved the problems on user management and access control management, and supported the corporate security standards, central auditing and control. The practice indicates that TRBAC improves the system efficiency and ensures the security.

     

    • HTML全文
    • 参考文献(1)
  • [1] 徐家俊,贾文玉.企业信息门户EIP[M].北京:机械工业出版社,2004 Xu Jiajun,Jia Wenyu.Enterprise information portal[M].Beijing:China Machine Press,2004(in Chinese) [2] Ferraiolo David,Kuhn Richard.Role-based access controls Proceedings of the 15th NIST-NCSC National Computer Security Conference. Baltimore:NIST-NCSC,1992:554-563 [3] Ferraiolo David,Barkley John,Kuhn Richard.A role-based access control model and reference implementation within a corporate intranet[J]. ACM Transaction on Information and System Security,1999,2(1):34-64 [4] 许峰,赖海光,黄皓,等.面向服务的角色访问控制技术研究[J].计算机学报,2005,28(4):686-693 Xu Feng,Lai Haiguang,Huang Hao,et al.Service-oriented role-based access control[J].Chinese Journal of Computers,2005,28(4):686-693(in Chinese) [5] Saltzer J H,Schroeder M D.The protection of information in computer systems[J].Proceedings of the IEEE,1975,63(9):1278-1308 [6] Wood C,Fernandez E B.Authorization in a decentralized database system Proceedings of the 5th International Conference on Very Large Databases.Brazil:IEEE Computer Society, 1979:352-359
    • 相关文章
    • 施引文献
  • 资源附件(0)
  • 加载中
WeChat 点击查看大图
计量
  • 文章访问数:  2729
  • HTML全文浏览量:  177
  • PDF下载量:  1270
  • 被引次数: 0
出版历程
  • 收稿日期:  2005-07-25
  • 网络出版日期:  2006-07-31

目录

    /

    返回文章
    返回
    常见问答

    版权所有 © 《北京航空航天大学学报》编辑部

    通讯地址:北京市海淀区学院路37号 《北京航空航天大学学报》编辑部  邮编:100191 邮箱:jbuaa@buaa.edu.cn

    本系统由 北京仁和汇智信息技术有限公司 开发    百度统计