作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (11): 144-146,. doi: 10.3969/j.issn.1000-3428.2007.11.053

• 安全技术 • 上一篇    下一篇

面向XML文档的客户端混合访问控制模型

孙 明,路长胜   

  1. (山东大学计算机科学与技术学院,济南 250061)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-06-05 发布日期:2007-06-05

Hybrid Client Access Control Model for XML Documents

SUN Ming, LU Changsheng   

  1. (School of Compute Science and Technology, Shandong University, Jinan 250061)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-06-05 Published:2007-06-05

摘要: 在数据交换过程中,对XML文档的访问控制管理问题是一个重点和热点问题。目前多数方法是以静态的方式共享加密数据,这类方法无法处理临时的、动态的访问控制规则。该文提出了一种结合静态模型和动态模型的混合模型,利用客户端软硬件设施进行XML文档的动态访问控制管理。通过实例说明和实验比较,证明了该方法的正确性和有效性。

关键词: 访问控制, 静态访问控制, 动态访问控制, 混合访问控制, 跳跃索引

Abstract: Access control for XML documents is a non-trivial topic, as it can be witnessed from the number of approaches presented in the literature. Several encryption schemes can be used to serve this purpose but all suffer from a static way of sharing data. But there are many situations where access control rules are user specific and dynamic which is difficult to predict. Models compiling access control policies in the data encryption cannot tackle this dynamic. With the emergence of hardware and software security elements on client devices, dynamic client-based access control schemes can be devised. A hybrid client access control model for XML documents is proposed. The validity and feasibility are verified through examples, experiment comparisons.

Key words: Access control, Static access control, Dynamic access control, Hybrid access control, Skip index

中图分类号: