摘要
本文主要探究了基于RBAC模型云资源管理系统访问控制权限的设计要点与实现方法。采用策略模型以MAC强制控制访问模型为策略基础,为主体、客体设置安全属性区分相应的权限,并设定了基于属性的访问控制规则;同时融合了RBAC访问控制的优势,引入了角色的权限验证机制,判定用户访问权限,从而保证了云存储系统的安全。
This article mainly explores the design points and implementation methods of access control permissions for cloud resource management systems based on the RBAC model.Adopting a policy model based on MAC mandatory control access model,setting security attributes to distinguish corresponding permissions for subjects and objects,and setting attribute based access control rules;At the same time,it integrates the advantages of RBAC access control and introduces a role based permission verification mechanism to determine user access permissions,thereby ensuring the security of cloud storage systems.
作者
魏巍
Wei Wei(Hulunbuir University,Hulunbuir,China)
出处
《科学技术创新》
2025年第2期122-125,共4页
Scientific and Technological Innovation
基金
呼伦贝尔学院校级委托项目《基于高校校园网络安全设计探究-以呼伦贝尔学院科研系统网络安全防护为例》(2023XJWT08)。
关键词
RBAC
访问控制
安全策略
权限判定算法
RBAC
access control
security strategy
permission determination algorithm
