上海交通大学学报(自然版)

• 自动化技术、计算机技术 • 上一篇    下一篇

基于角色访问控制系统中角色结构安全性分析问题的模型检测验证

邹林1,2,潘理1,2
  

  1. (1.上海交通大学 电子信息与电气工程学院, 上海 200240;2.上海市信息安全综合管理技术研究重点实验室, 上海 200240)
  • 收稿日期:2009-10-07 修回日期:1900-01-01 出版日期:2010-09-28 发布日期:2010-09-28

RRASAP Security Verification Based on Model Checking for RBAC Access Control Systems

ZOU Lin1,2,PAN Li1,2
  

  1. (1. School of Electronic Information and Electric Engineering, Shanghai Jiaotong University, Shanghai 200240, China; 2. Shanghai Key Laboratory of Information Security Synthesis Management Technique Research, Shanghai 200240, China)
  • Received:2009-10-07 Revised:1900-01-01 Online:2010-09-28 Published:2010-09-28

摘要: 提出了一种与角色结构相关的安全性分析问题(RRASAP),分析了角色结构对系统安全性的影响,证明了其计算复杂度,采用模型检测技术得到将RRASAP转化为模型检测问题的自动化验证算法,并验证了其有效性.结果表明,该算法可以在期望的时间内自动解决RRASAP问题.

关键词: 角色结构, 安全性分析问题, 模型检测

Abstract: A new security analysis problem named rolerole assignmentsecurity analysis problem(RRASAP) was proposed. The impact of role hierarchy changes on security was analyzed, and the computational complexity of this problem proved. An algorithm of translating RRASAP into a Model checking formalism was also proposed to do automatic verification, and to prove the feasibility of this method. The experiment shows that this algorithm can automaticly solve RRASAP in expected time.

中图分类号: