摘要
在自主访问控制模型、强制访问控制模型和基于角色的访问控制模型的基础上,对经典的BLP强制访问控制模型进行了扩展研究,结合扩展强制访问控制模型和基于角色的访问控制模型两者的优点,并引入了特权机制,给出了一种从基于角色的访问控制模型中构造出强制访问控制模型的方法,构造了扩展的基于角色的强制访问控制模型(ERBMAC)。并且以操作语句的访问策略和范畴关系为例给出了ERBMAC模型的实例分析过程。
On the basis of discretionary access control model,mandatory access control model and role-based access control model,it expands the BLP mandatory access control model and combines the advantages of expanded mandatory access control model and rolebased access control model.It also provides a method of constructuring mandatory access control model from role-based access control model,which produces the ERBMAC model.Take the access strategy and scope relation of SQL as an example,the analysis process of application is shown.
出处
《微计算机信息》
2011年第10期132-133,35,共3页
Control & Automation
