Role-based access control model with spatio-temporal constraint

doi:10.3778/j.issn.1002-8331.2010.07.027

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (7): 89-92.DOI: 10.3778/j.issn.1002-8331.2010.07.027

• 网络、通信、安全 • Previous Articles Next Articles

Role-based access control model with spatio-temporal constraint

AN Xiao-ming¹，WANG Xiao-ming^1，2，WANG Qiao-ling¹

1.College of Computer Science，Shaanxi Normal University，Xi’an 710062，China
2.Institute of Intelligent Information Process & Information Security，Shaanxi Normal University，Xi’an 710062，China

Received:2009-09-08 Revised:2009-11-19 Online:2010-03-01 Published:2010-03-01
Contact: AN Xiao-ming

具有时空约束的角色访问控制模型

安小明¹，王小明^1，2，王巧玲¹

1.陕西师范大学计算机科学学院，西安 710062
2.陕西师范大学智能信息处理与信息安全研究所，西安 710062

通讯作者: 安小明

Abstract

Abstract: The highly development of information technology has brought new challenges to information security.Because of the lack of time and space constraints，traditional RBAC model cann’t meet the new requirements of information system.On the basis of RBAC，the definition of spatio-temporal domain is introduced，each element of the model is constrained with time and space，and the spatio-temporal role based access control model（TSRBAC） is proposed.In this paper，TSRBAC is described formally，spatio-temporal role hierarchy and spatio- temporal separation of duty are defined.The spatio-temporal access control algorithm has also been given.

Key words: role-based access control, spatio-temporal domain, spatio-temporal constraint, spatio-temporal separation of duty

摘要： 信息技术的高度发展对信息安全提出了新的挑战，经典的基于角色的访问控制（RBAC）中缺乏对时间和空间的约束，使RBAC模型不能适应信息系统新的安全需求。在RBAC的基础上，引入了时空域的定义，对模型中各要素进行了时间和空间约束，提出了具有时空约束的角色访问控制模型（TSRBAC）。形式化地描述了TSRBAC，并定义了时空角色继承和时空职责分离，给出了时空访问控制算法。

关键词: 角色访问控制, 时空域, 时空约束, 时空职责分离

CLC Number:

TP309

AN Xiao-ming¹，WANG Xiao-ming^1，2，WANG Qiao-ling¹. Role-based access control model with spatio-temporal constraint[J]. Computer Engineering and Applications, 2010, 46(7): 89-92.

安小明¹，王小明^1，2，王巧玲¹. 具有时空约束的角色访问控制模型[J]. 计算机工程与应用, 2010, 46(7): 89-92.

[1]	YU Bo, TAI Xianqing, MA Zhijie. Study on Attribute and Trust-Based RBAC Model in Cloud Computing [J]. Computer Engineering and Applications, 2020, 56(9): 84-92.
[2]	HU Ming，PAN Xuezeng，LI Wen. Design and implementation of improved multiple-level security model [J]. Computer Engineering and Applications, 2011, 47(4): 77-80.
[3]	WANG Shewei1，2，YANG Haicheng1，MO Rong1. Research on access control mechanism of reconfigurable manufacturing execution system [J]. Computer Engineering and Applications, 2011, 47(23): 5-8.
[4]	DENG Kangming1，CHEN Jinyu1，2. Research and implement of role-based access control model based on partition number [J]. Computer Engineering and Applications, 2011, 47(12): 52-54.
[5]	ZHANG Yi-hui，LIANG Jiu-zhen. Research of enhanced Chinese Wall security policy—Aggressive model on RBAC [J]. Computer Engineering and Applications, 2010, 46(29): 114-116.
[6]	WANG Xin-sheng，XIONG Shu-ming，WANG Xin-yu. WARBAC：Improved administrative model of role-based access control [J]. Computer Engineering and Applications, 2009, 45(36): 95-98.
[7]	SUN Wei¹,WU Chang-an¹,WANG Rui-min². Role-based constrained delegation model and constraints specification [J]. Computer Engineering and Applications, 2008, 44(36): 244-248.
[8]	DONG Bin¹,CHEN Jin-zhe¹,LIU Xiu-ling²,ZHANG Yu³. Research on privilege system for role-based access control based on Web in electric medical record system [J]. Computer Engineering and Applications, 2008, 44(26): 233-235.

Role-based access control model with spatio-temporal constraint

具有时空约束的角色访问控制模型

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 8

Recommended Articles

Metrics