计算机工程Issue(11):65-70,76,7.DOI:10.3969/j.issn.1000-3428.2014.11.013
基于组织的Web服务访问控制模型
Organization-based Access Control Model for Web Service
摘要
Abstract
For the problem of current access control strategies difficultly guaranteeing the flexibility of authorization of complex E-government system for Web service,this paper proposes an organization-based access control model for Web services on the basis of the research of the organization-based 4 level access control model. The model takes organization as the core and studies the issue of access control and authorization management from the perspective of management. Through importing the position agent and authorization unit in the model,the authorization can be adjusted according to the change of the environment context information to implement the dynamic authorization,while taking advantage of the state migration of authorization units,provides support for workflow patterns. Furthermore,the model divides permissions into service permissions and service attribute permissions, and achieves fine-grained resource protection. Application examples show that the model can commendably fit the complex organization structure in E-government system. Moreover,it can make authorization more efficient and flexible meanwhile protecting the Web service resources.关键词
访问控制/电子政务/组织结构/Web服务/岗位代理/动态授权Key words
access control/E-government/organization structure/Web service/position agent/dynamic authorization分类
信息技术与安全科学引用本文复制引用
李怀明,王慧佳,符林..基于组织的Web服务访问控制模型[J].计算机工程,2014,(11):65-70,76,7.基金项目
国家自然科学基金资助重点项目(91024029) (91024029)
国家自然科学基金青年科学基金资助项目(71001013)。 (71001013)
