| As an emerging security access policy, RBAC model has the characteristics ofclarity, scalability, high stability, ease of application, etc.. Hence a lot of researchersare concerned about expanding RBAC research scopes. Such that RBAC model canbe more and more widely used in various fields to reduce administrative overhead,and enhance the security of the systems.This dissertation raises concentrated reconcile domain theory based on theoriginal standard RBAC model and accords to original reconcile domain model. Themodel uses reconcile domain table to manage multi-domain interactive and ittransfer indirect interaction relationship to a direct interaction relations. Theproposed model is good for the centralized management of multi-domain interactiverelationship. The model is the basis of the conflict detection algorithm andresolution algorithm.On the basis of concentrated reconcile domain theory, this dissertation bringsup multi-domain interactive conflict detection algorithm and conflict resolutionalgorithm. The detection algorithm can detect both cyclical conflicts and SoDconflicts using the method of semantic comparison of the reconcile domain tableitems.After the conflict detecting, conflict can be resolved by conflict resolutionalgorithm. The algorithm resolves the conflict according to the principle ofremoving least edges, then applies the result in the RBAC system to achieve safeinteractive.In order to apply the theory in real systems, this dissertation builds a RBACsystem according to the reconcile domain theory to test and verify the algorithm.The system contributes to future practical application of the algorithm. |
PDF Full Text Request