Research and Enforcement of Enhanced Chinese Wall Security Policy

ZHAO Qing-song; SUN Yu-fang; LIANG Hong-liang; ZHANG Xiang-feng; SUN Bo

您当前的位置：

首页 >

文章列表页 >

Research and Enforcement of Enhanced Chinese Wall Security Policy

更新时间：2025-07-16

- Research and Enforcement of Enhanced Chinese Wall Security Policy
- Acta Electronica Sinica Vol. 30, Issue 11, Pages: 1658-1662(2002)
- 作者机构：
  
  中国科学院软件研究所,北京,100080
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP309
- Published：2002
- 稿件说明：
移动端阅览
ZHAO Qing-song, SUN Yu-fang, LIANG Hong-liang, et al. Research and Enforcement of Enhanced Chinese Wall Security Policy[J]. Acta Electronica Sinica, 2002, 30(11): 1658-1662.
DOI：

ZHAO Qing-song, SUN Yu-fang, LIANG Hong-liang, et al. Research and Enforcement of Enhanced Chinese Wall Security Policy[J]. Acta Electronica Sinica, 2002, 30(11): 1658-1662. DOI：

摘要

"长城"安全政策(Chinese Wall Security Policy

CWSP)是商业信息领域中重要的安全政策之一.但是Brewer-Nash提出的CWSP并不能很好地满足实际的需要.基于角色的访问控制(Role-Based Access Control

RBAC)模型是一种"政策中性(Policy Neutral)"的模型

被看作是最有可能替代传统的自主和强制访问控制模型的一种全新的模型

正越来越被信息安全领域所重视.本文首先介绍了RBAC和"长城"安全政策

然后根据实际应用对CWSP作了系统的扩充

最后本文系统地论述了基于RBAC的扩充CWSP的实现方法.

Abstract

Chinese Wall security policy (CWSP) is one of the most important security policies in commercial information area.But the CWSP proposed by Brewer and Nash can't fully meet the practical requirement.The role-based access control (RBAC)

a policy neutral model

has recently received considerable attention as a most promising alternative to traditional discretionary access control (DAC) and mandatory access control (MAC) models.RBAC and the Chinese Wall security policies are given

and expanded due to the practical application.The RBAC-based method to expand CWSP is systematically discussed.Thus

the enhanced CWSP (ECWSP) is presented firstly.And then the method of configuring RBAC to enforce the ECWSP is systematically studied.

关键词

Keywords

references

Views

952

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Research on Intrusion Tolerant Architecture Based on Role-Based Access Control

Robust Resource Allocation Algorithm for Secure Communication in LEO-Based Satellite Communication Systems

Anti-Attack Color Image Encryption Scheme Based on Hopfield Network “Pseudo Attractor” and Alternating Quantum Random Walk

A Feature Model Componentization Method Based on Role

Related Author

PENG Wen-ling

WANG Li-na

ZHANG Huan-guo

FU Jian-ming

XU Yong-jun

LU Cheng-zhuang

DONG Yi-heng

ZHAO Tao

Related Institution

School of Computer,State Key Laboratory of Software Engineering,Wuhan University

Network Center,Gannan Teachers College

School of ComputerState Key Laboratory of Software EngineeringWuhan UniversityWuhanHubei 430079China

Network CenterGannan Teachers CollegeGanzhouJiangxi 341000China

School of Communications and Information Engineering, Chongqing University of Posts and Telecommunications

⁰