机构地区: 山东大学网络信息安全研究所
出 处: 《计算机工程与设计》 2006年第15期2722-2724,2792,共4页
摘 要: 在基于电子现金的网络支付方案中,交易过程相关的多个实体有不同类型的权限和访问标准,如果各自进行安全管理,会使得整个系统的维护协调有很大难度。因此,横跨多个实体的权限管理带来了额外的安全性挑战。分析了基于RBAC的电子现金系统的权限管理策略,通过基于常规角色的授权实现了对电子现金系统内多个实体的访问控制,并设置与常规角色互斥的管理角色实现系统的分布式自行管理。 In the intemet payment scheme based on E-cash, different domains relevant to the transaction process have different privileges and different access authorization. If they all deal with security problems respectively, maintenance and collaboration for the whole system will be very difficult. The issue of privilege management across multiple domains will bring additional challenges. Privilege mana- gement policies for the E-cash system based on RBAC are analyzed. Access control in different domains is implemented by authorizing roles. Administrative roles are also used in the system to realize self-management in the E-cash system.
领 域: [自动化与计算机技术] [自动化与计算机技术]