摘要: 针对XACML策略间的语义表示、冲突等问题,提出基于描述逻辑的形式化方法,对XACML策略的目标、规则、规则组合算法和策略冲突消解算法进行形式化处理,并给出基于描述逻辑的规则间冲突检测方案。分析结果表明,该形式化方法便于XACML策略的扩展,并且增强了XACML的语义表达能力和推理能力。
关键词:
XML访问控制标记语言,
描述逻辑,
冲突检测,
规则冗余,
推理,
语义
Abstract: Against the semantics of XML Access Control Markup Language(XACML) policies, conflict and other issues, this paper provides description logic-based formal methods, formalizes XACML policy target, rules, rules combination algorithms and policy conflict resolution algorithm, and puts forward the rules conflict detection method based on the description logic. Analysis result shows that this method facilitates strategic expansion, and enhances the XACML semantics of expressive power and reasoning ability.
Key words:
XML Access Control Markup Language(XACML),
description logic,
conflict detection,
rule redundancy,
reasoning,
semantic
中图分类号:
陈旭日, 徐炜民. 基于描述逻辑的XACML策略研究[J]. 计算机工程, 2013, 39(4): 71-74.
CHEN Xu-Ri, XU Wei-Min. Study of XACML Policy Based on Description Logic[J]. Computer Engineering, 2013, 39(4): 71-74.