Conditioned secure access control model based on multi-weighted roles and rules in workflow system

您当前的位置：

首页 >

文章列表页 >

Conditioned secure access control model based on multi-weighted roles and rules in workflow system

更新时间：2024-10-14

- Conditioned secure access control model based on multi-weighted roles and rules in workflow system
- Issue 2, Pages: 8-16(2008)
- 作者机构：
  
  1. 吉林大学计算机科学与技术学院
  2. 吉林大学符号计算与知识工程教育部重点实验室,吉林,长春,130012
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP393.08
- Published：2008
- 稿件说明：
移动端阅览
Conditioned secure access control model based on multi-weighted roles and rules in workflow system[J]. 2008, (2): 8-16.
DOI：

Conditioned secure access control model based on multi-weighted roles and rules in workflow system[J]. 2008, (2): 8-16. DOI：

摘要

针对传统的RBAC模型不能表达复杂的工作流安全访问控制约束的缺点

提出了一个适合工作流系统的基于多权角色和规则的条件化安全访问控制模型CMWRRBSAC(conditioned multi-weighted role and rule based secure access control model)。该模型基于传统的RBAC模型

提出了基于动态角色分配的条件化RBAC方法

定义了基于多权角色的工作流系统访问授权新概念

并针对多个角色和多个用户协同激活任务的序约束问题

给出了基于令牌的序约束算法和基于加权角色综合的序约束算法

讨论了一个基于规则的职责分离约束建模方法

并给出了改进的规则一致性检验算法。

Abstract

The traditional RBAC model cannot express complicated workflow secure access control constraint

so a new conditioned RBAC model suit for WfMS （workflow management system）—CMWRRBSAC （conditioned multi-weighted role and rule based secure access control model） was proposed on the basis of multi-weighted roles and rules. Based on the traditional RBAC model

a conditioned RBAC method was discussed on the basis of dynamic role assignment and a new concept of workflow access authorization was defined on the basis of multi-weighted roles. A sort algorithm based on token and a sort algorithm based on weighted roles synthesis were presented in allusion to the problem of multi-roles and multi-users sequence constraint in the process of executing tasks. A rule-based modeling method of separation of du- ties was discussed and its improved rule consistency check arithmetic was given.

关键词

Keywords

references

Views

1056

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Reversible data hiding in encrypted domain based on fine-grained access control

Microservice selection approach for mobile users in edge computing environment

Byzantine fault-tolerant distributed access control mechanism for the Internet of things

Modeling and verification of data circulation control based on timed automata

Multi-keyword attribute-based searchable encryption scheme supporting re-encryption for cloud storage

Related Author

ZHANG Minqing

PENG Shen

JIANG Chao

DI Fuqiang

DONG Yufeng

ZHAO Shuxu

JIANG Kaijun

WANG Xiaolong

Related Institution

Key laboratory of CTC&IE (Engineering University of PAP), Ministry of Education

College of Cryptography Engineering, Engineering University of PAP

School for Electronic and Information Engineering, Lanzhou Jiaotong University

Chongqing Key Laboratory of Mobile Communication Technology

School of Communications and Information Engineering, Chongqing University of Posts and Telecommunications

AI问答

⁰