作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (01): 136-138. doi: 10.3969/j.issn.1000-3428.2007.01.047

• 安全技术 • 上一篇    下一篇

一种支持网上共享设备的安全模型

李国辉,罗铁坚,宋进亮,许延祥   

  1. (中国科学院研究生院,北京 100049)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-01-05 发布日期:2007-01-05

A Security Model for Online Accessing to Share Devices

LI Guohui, LUO Tiejian, SONG Jinliang, XU Yanxiang   

  1. (Graduate School of Chinese Academy of Sciences, Beijing 100049)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-01-05 Published:2007-01-05

摘要: 分析和比较了传统访问控制模型中客体与共享设备资源的异同,指出了设备资源具有时间依赖性、权限差异性、容量受限和进程依赖性,并根据共享设备资源的特性要求,在基于角色的访问控制模型的基础上引入了动态执行者、固定角色和设备访问控制策略等概念,提出了一种远程设备访问控制模型(RDAC),更好地实现了对设备的描述和访问控制。

关键词: 设备共享, 网络安全, 安全模型, 访问控制, XML

Abstract: This paper analyzes and contrasts the difference between conventional access control objects and share device resources. It presents device resource characteristics, such as time-dependent permit diversity privilege, access capacity and process-dependent. According to the four key characteristics and role-based access control model, it introduces several concepts such as dynamic actor, permanent role and device access policy etc. A remote device access control (RDAC) model is presented. This model satisfies the requirement for describing online device and access control.

Key words: Device share, Network security, Security model, Access control, XML