使用NFS实现基于角色的访问控制

Proceedings of IEEE 6th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises Pub Date : 1997-06-18 DOI:10.1109/ENABL.1997.630829

M. Gustafsson, Benoit Deligny, N. Shahmehri

{"title":"使用NFS实现基于角色的访问控制","authors":"M. Gustafsson, Benoit Deligny, N. Shahmehri","doi":"10.1109/ENABL.1997.630829","DOIUrl":null,"url":null,"abstract":"Presents a design for a modified NFS (Network File System) server that, through simple additions, makes it possible to place an exported file system under role-based access control (RBAC). RBAC is an efficient way for managing access control information. However, most access control systems today do not support RBAC. As a solution to this problem, the modified NFS server we present in this paper makes it possible to introduce RBAC into existing environments in a transparent manner. We have implemented our design as an extension to the Linux User Space NFS Server running on a Linux 2.0 system. Our implementation demonstrates the feasibility of our main idea. However, tests show that performance of our server needs to be improved, something we believe can be achieved through code optimizations.","PeriodicalId":334410,"journal":{"name":"Proceedings of IEEE 6th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises","volume":"77 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1997-06-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Using NFS to implement role-based access control\",\"authors\":\"M. Gustafsson, Benoit Deligny, N. Shahmehri\",\"doi\":\"10.1109/ENABL.1997.630829\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Presents a design for a modified NFS (Network File System) server that, through simple additions, makes it possible to place an exported file system under role-based access control (RBAC). RBAC is an efficient way for managing access control information. However, most access control systems today do not support RBAC. As a solution to this problem, the modified NFS server we present in this paper makes it possible to introduce RBAC into existing environments in a transparent manner. We have implemented our design as an extension to the Linux User Space NFS Server running on a Linux 2.0 system. Our implementation demonstrates the feasibility of our main idea. However, tests show that performance of our server needs to be improved, something we believe can be achieved through code optimizations.\",\"PeriodicalId\":334410,\"journal\":{\"name\":\"Proceedings of IEEE 6th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises\",\"volume\":\"77 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1997-06-18\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of IEEE 6th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ENABL.1997.630829\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of IEEE 6th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ENABL.1997.630829","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

摘要

介绍了修改后的NFS(网络文件系统)服务器的设计，通过简单的添加，可以将导出的文件系统置于基于角色的访问控制(RBAC)之下。RBAC是一种有效的访问控制信息管理方法。然而，目前大多数访问控制系统都不支持RBAC。作为这个问题的解决方案，我们在本文中提出的修改后的NFS服务器使得以透明的方式将RBAC引入现有环境成为可能。我们已经将我们的设计实现为运行在Linux 2.0系统上的Linux用户空间NFS服务器的扩展。我们的实现证明了我们主要思想的可行性。但是，测试表明我们的服务器的性能需要改进，我们认为可以通过代码优化来实现。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Using NFS to implement role-based access control

Presents a design for a modified NFS (Network File System) server that, through simple additions, makes it possible to place an exported file system under role-based access control (RBAC). RBAC is an efficient way for managing access control information. However, most access control systems today do not support RBAC. As a solution to this problem, the modified NFS server we present in this paper makes it possible to introduce RBAC into existing environments in a transparent manner. We have implemented our design as an extension to the Linux User Space NFS Server running on a Linux 2.0 system. Our implementation demonstrates the feasibility of our main idea. However, tests show that performance of our server needs to be improved, something we believe can be achieved through code optimizations.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of IEEE 6th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises

自引率

0.00%

发文量