{"title":"重新讨论了强制访问控制和基于角色的访问控制","authors":"Sylvia L. Osborn","doi":"10.1145/266741.266751","DOIUrl":null,"url":null,"abstract":"In this paper we reexamine the interaction between role-based access control and mandatory access control. We examine the question: from the perspect,ive of a given role graph in which the objects have been assigned security classifications, can its roles be assigned to subjects without violating mandai.ory access control rules? A detailed study of the structure of individual roles and edges in a role graph is undertaken. We show that the combinai,ion of the structure imposed by the role graphs and the MAC rules means that the possible structure of a role graph in which roles are assignable to subjects without violating MAC rules is greatly restricted.","PeriodicalId":355233,"journal":{"name":"ACM Workshop on Role-Based Access Control","volume":"112-113 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1997-11-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"127","resultStr":"{\"title\":\"Mandatory access control and role-based access control revisited\",\"authors\":\"Sylvia L. Osborn\",\"doi\":\"10.1145/266741.266751\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we reexamine the interaction between role-based access control and mandatory access control. We examine the question: from the perspect,ive of a given role graph in which the objects have been assigned security classifications, can its roles be assigned to subjects without violating mandai.ory access control rules? A detailed study of the structure of individual roles and edges in a role graph is undertaken. We show that the combinai,ion of the structure imposed by the role graphs and the MAC rules means that the possible structure of a role graph in which roles are assignable to subjects without violating MAC rules is greatly restricted.\",\"PeriodicalId\":355233,\"journal\":{\"name\":\"ACM Workshop on Role-Based Access Control\",\"volume\":\"112-113 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1997-11-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"127\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"ACM Workshop on Role-Based Access Control\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/266741.266751\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM Workshop on Role-Based Access Control","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/266741.266751","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Mandatory access control and role-based access control revisited
In this paper we reexamine the interaction between role-based access control and mandatory access control. We examine the question: from the perspect,ive of a given role graph in which the objects have been assigned security classifications, can its roles be assigned to subjects without violating mandai.ory access control rules? A detailed study of the structure of individual roles and edges in a role graph is undertaken. We show that the combinai,ion of the structure imposed by the role graphs and the MAC rules means that the possible structure of a role graph in which roles are assignable to subjects without violating MAC rules is greatly restricted.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
