摘要
着眼于单主体访问操作中的原子行为和时序性质,采用时序模态逻辑,提出一种基于行为的时序使用控制模型。该逻辑框架包含了与授权相关的按时间节点预定义的行为、由主客体属性和系统所表达的状态序列及状态谓词。在给出了一种策略语言后,对其语法和语义进行了形式定义,并根据使用控制(UCON)模型族的行为特性给出了控制策略。该逻辑模型不仅可以形式化描述使用控制基本原理,而且有助于准确并自动化地判定策略的可满足性,具有良好的灵活性和表达能力。
By using temporal modality logic in this paper, an action-based temporal usage control model was proposed with focus on atomic actions and temporal properties during a single usage process. The specification of the logic model consists of pre-defined authorization actions, a sequence of states expressed by attributes of subjects, objects, and the system, and state predicates. A policy language was introduced and its syntax and semantics were defined formally, and control policies were given according to action characteristics of core models of Usage Control ( UCON). The logic model can not only depict the basic principles of UCON, but be helpful to precisely and automatically determine whether the policies could be satisfied, which shows good flexibility and expressive capability.
出处
《计算机应用》
CSCD
北大核心
2009年第10期2802-2805,共4页
journal of Computer Applications
基金
国家863计划项目(2007AA01Z471)
河南省基础与前沿技术研究计划(082300410150)
关键词
使用控制
行为
状态序列
时序授权
Usage Control (UCON)
action
sequence of states
temporal authorization
