计算机工程与应用 ›› 2007, Vol. 43 ›› Issue (31): 162-164.

• 数据库与信息处理 • 上一篇    下一篇

一种访问权限管理的格模型

晏 立,刘青海   

  1. 江苏大学 计算机科学与通信工程学院,江苏 镇江 212013
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-11-01 发布日期:2007-11-01
  • 通讯作者: 晏 立

Lattice model of access control management

YAN Li,LIU Qing-hai   

  1. School of Computer Science and Telecommunication Engineering,Jiangsu University,Zhenjiang,Jiangsu 212013,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-11-01 Published:2007-11-01
  • Contact: YAN Li

摘要: 描述了一种以格为基础的访问控制模型,与访问对象相关的访问权限用格的结点表示,访问权限的变化映射在格上成为一个结点到另一个结点的变换。在这种模型中,访问控制策略实时更新的并发控制算法简单且易于实现。在并发环境中,多个主体读写数据和修改访问控制策略并互相影响时,可直接应用文中的模型与算法。

Abstract: This paper describes a lattice-based access control model.All possible access control privileges pertaining to an object can be represented as the nodes on the access control lattice of the object.The update of access control changes the mapping of the subject access privilege from one node to another node in the access control lattice of object.Authorization right method and simple concurrency control algorithms for access control policy real-time update are given in the model.The model and algorithms are useful for concurrency environment in which multiple subjects access and modify data and access control policies,while the policies are in effect.