信息安全研究2024,Vol.10Issue(3):241-247,7.DOI:10.12379/j.issn.2096-1057.2024.03.07
基于角色和属性的零信任访问控制模型研究
Research on Zero Trust Access Control Model Based on Role and Attribute
摘要
Abstract
In the face of many security threats in the network,the traditional access control model is increasingly exposed to the problems of poor dynamics of permission allocation,low sensitivity to new threats,and high complexity of resource allocation.This paper proposed a zero trust access control model based on role and attribute to address the above problems.The model used a logistic regression approach to trust assessment of access subjects to achieve access control with high sensitivity to access subject attribute,and adopted a new resource decision tree,which reduced the time complexity of resource permission assignment while achieving finer-grained security for access control.Finally,verifying the model in this paper under typical application scenarios showed that the model was significantly better than the traditional access control model in terms of dynamic assignment of permissions.关键词
零信任/角色/属性/访问控制/资源决策树Key words
zero trust/role/attribute/access control/resource decision tree分类
信息技术与安全科学引用本文复制引用
许盛伟,田宇,邓烨,刘昌赫,刘家兴..基于角色和属性的零信任访问控制模型研究[J].信息安全研究,2024,10(3):241-247,7.基金项目
国家重点研发计划项目(2022YFB3104402) (2022YFB3104402)
中央高校基本科研业务费专项资金项目(328202221) (328202221)
