计算机工程与科学2011,Vol.33Issue(9):24-28,5.DOI:10.3969/j.issn.1007-130X.2011.09.005
基于认证可信度的用户权限控制技术研究
Research on User's Rights Control Technology Based on Authentication Trustworthiness
魏立峰 1丁滟 1陈松政 1何连跃1
作者信息
- 1. 国防科学技术大学计算机学院,湖南长沙410073
- 折叠
摘要
Abstract
Authentication trustworthiness reflects the degree of trustworthiness of the user who has passed system authentication. Based on authentication trustworthiness, logging in is restricted, user's role and role's mandatory access control rights are restricted, and then the user's rights control technology is proposed. Combing authentication trustworthiness with accessing systems, it requests that the user must have some authentication trustworthiness when he wants to access a system, and the important user must pass an important identity authentication mechanism. Applying authentication trustworthiness to RBACRole Based Authorization), it can decide which role can be activated by the user, and also can decide what rights can be activated by the active role of the user, and reflects on every mandatory access control policy, it implements the unification of authentication and access authorization, solves the problem of improper right obtaining. Finally, more contents to be studied are pointed out.关键词
认证可信度/强制访问控制/角色定权/访问授权Key words
authentication trustworthiness/mandatory access control/role based authorization/access authorization分类
信息技术与安全科学引用本文复制引用
魏立峰,丁滟,陈松政,何连跃..基于认证可信度的用户权限控制技术研究[J].计算机工程与科学,2011,33(9):24-28,5.
