Abstract: This paper analyzes and contrasts the difference between conventional access control objects and share device resources. It presents device resource characteristics, such as time-dependent permit diversity privilege, access capacity and process-dependent. According to the four key characteristics and role-based access control model, it introduces several concepts such as dynamic actor, permanent role and device access policy etc. A remote device access control (RDAC) model is presented. This model satisfies the requirement for describing online device and access control.

Key words: Device share, Network security, Security model, Access control, XML

摘要： 分析和比较了传统访问控制模型中客体与共享设备资源的异同，指出了设备资源具有时间依赖性、权限差异性、容量受限和进程依赖性，并根据共享设备资源的特性要求，在基于角色的访问控制模型的基础上引入了动态执行者、固定角色和设备访问控制策略等概念，提出了一种远程设备访问控制模型(RDAC)，更好地实现了对设备的描述和访问控制。

关键词: 设备共享, 网络安全, 安全模型, 访问控制, XML