Research and Implementation of Role-Based Domain and Type Enforcement Access Control Model

ZHAO Qing-song; SUN Yu-fang; ZHANG Xiao-ping

您当前的位置：

首页 >

文章列表页 >

Research and Implementation of Role-Based Domain and Type Enforcement Access Control Model

更新时间：2025-07-16

- Research and Implementation of Role-Based Domain and Type Enforcement Access Control Model
- Acta Electronica Sinica Vol. 31, Issue 6, Pages: 842-846(2003)
- 作者机构：
  
  1. 中国科学院软件研究所,北京,100080
  2. 山东建筑工程学院,山东,济南,250014
  3. 中国科学院软件研究所北京,100080
  4. 山东建筑工程学院山东济南,250014
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP309
- Published：2003
- 稿件说明：
移动端阅览
ZHAO Qing-song, SUN Yu-fang, ZHANG Xiao-ping. Research and Implementation of Role-Based Domain and Type Enforcement Access Control Model[J]. Acta Electronica Sinica, 2003, 31(6): 842-846.
DOI：

ZHAO Qing-song, SUN Yu-fang, ZHANG Xiao-ping. Research and Implementation of Role-Based Domain and Type Enforcement Access Control Model[J]. Acta Electronica Sinica, 2003, 31(6): 842-846. DOI：

摘要

安全系统只有能够支持多种安全政策才能满足实际需求.基于角色的访问控制(Role-Based Access Control

RBAC)是一种政策中性(Policy Neutral)的新模型

已经实现了多种安全政策.域-类型增强(Domain and Type Enforcement

DTE)安全政策充分体现了最小特权(Least Privilege)和职责分离(Separation of Duty)的安全原则

但是

RBAC96不便于直接实现DTE.根据RBAC和DTE的思想

本文提出了"基于角色的域-类型增强访问控制"(Role-Based Domain and Type Enforcement Access Control

RDTEAC)模型.该模型继承了RBAC96的优点

又体现了DTE的安全思想

并易于实现DTE安全政策.此外

我们还在Linux上实现了RDTEAC模型的一个原型.

Abstract

Only those systems which support multiple security policies can meet practical security requirements.The role-based access control (RBAC) is a new policy-neutral model

which has enforced multiple security policies.The domain and type enforcement security policy fully reflects the security principles of least privilege and separation of duties.According to RBAC and DTE

the role-based domain and type enforcement access control (RDTEAC) model is presented.RDTEAC not only inherits the advantage of RBAC

but also facilitates implementation of DTE security policy.A Linux prototype of RDTEAC was developed.

关键词

Keywords

references

Views

1018

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Efficient and Universally Composable Security Oblivious Transfer

Related Author

FENG Tao

MA Jian-feng

LI Feng-hua

Related Institution

Ministry of Education Key Laboratory of Computer Networks and Information Security,Xidian University

⁰