Security Optimized RBAC Access Control Model

doi:10.3969/j.issn.1671-1122.2017.05.012

Abstract

Abstract:

Role-Based Access Control(RBAC) have been adopted bythe electric power information system rely on its reliable security and flexibility of authorization. But due to the popularization and expansion of Intelligent acquisition equipment and the electrical powersystem, combined with the stricter security requirement of electrical informationsystem, the security issues exposed when the traditional RBAC model be applied to the electric power information system. This paper put forward a kind of safety optimized RBAC model. In this model, we import the concept of SG(Supervise Group) and the machine-made of the supervision of sensitive permission to expand the traditional RBAC in safety field. In this paper,the generating algorithm of SG and the pseudo code, flow chart of the optimized model is also be given.An example is given to show that the proposed algorithm can effectively supervise the sensitive permission and enhance the security of the electric power information system while satis-fying the function of it.

Key words: role-based access control(RBAC), information security, electric power information system, permission supervise

CLC Number:

TP311.5

Chunhua GU, Yuan GAO, Xiuxia TIAN. Security Optimized RBAC Access Control Model[J]. Netinfo Security, 2017, 17(5): 74-79.

Figures/Tables 6

References 11

[1]	姜俊萍. 基于RBAC模型的通用权限管理组件的设计与实现[D].上海:复旦大学, 2010.
[2]	程思嘉,张昌宏,潘帅卿. 基于CP-ABE算法的云存储数据访问控制方案设计[J]. 信息网络安全,2016(2):1-6.
[3]	陈胜,娄渊胜,张文渊. RBAC模型中角色互斥研究及应用[J].计算机技术与发展, 2012(12):21-24+28.
[4]	池亚平,姜停停,戴楚屏,等. 基于BLP的虚拟机多级安全强制访问控制系统设计与实现[J]. 信息网络安全,2016(10):1-7.
[5]	陈丹丹. 基于RBAC的权限管理组件的设计与实现[D]. 武汉:武汉理工大学, 2008.
[6]	金鑫,王晶,李炜. 基于RBAC的扩展权限管理模型[J]. 计算机系统应用, 2012 (6):20-24+105.
[7]	袁中兰, 温巧燕, 杨义先. RBAC角色继承关系中私有权限问题的研究[J]. 中国电子科学研究院学报,2006(1):50-53.
[8]	高川,朱群雄. RBAC角色继承关系中私有权限问题的研究[J]. 计算机应用, 2010(5):1230-1232+1235.
[9]	蔡婷,聂清彬,欧阳凯,等. 基于角色扩展的RBAC模型[J]. 计算机应用研究, 2016(3):882-885.
[10]	叶重阳,庄毅. 一种基于多维信任度的动态RBAC模型[J]. 计算机与现代化, 2015(6):7-11.
[11]	段隆振,文锋,黄水源,等. 一种描述RBAC 角色层次关系和互斥关系的模型及实现[J]. 南昌大学学报(理科版), 2006(6):601–604.

[1]	Yihua ZHOU, Zhuqing LV, Yuguang YANG, Weimin SHI. Data Deposit Management System Based on Blockchain Technology [J]. Netinfo Security, 2019, 19(8): 8-14.
[2]	Lin LI, Xuxia ZHANG. National Secret Substitution of zk-snark Bilinear Pair [J]. Netinfo Security, 2019, 19(10): 10-15.
[3]	Yan CHEN, Jianyong GE, Jing LAI, Zhen LU. Security System of the Information System in the Cloud [J]. Netinfo Security, 2018, 18(4): 79-86.
[4]	Congdong LV, Zhen HAN. A Security Model of Cloud Computing Based on IP Model [J]. Netinfo Security, 2018, 18(11): 27-32.
[5]	Baoyuan KANG, Jiaqiang WANG, Dongyang SHAO, Chunqing LI. A Secure Authentication and Key Agreement Protocol for Heterogeneous Ad Hoc Wireless Sensor Networks [J]. Netinfo Security, 2018, 18(1): 23-30.
[6]	Zhong LIANG, Jiakun ZHOU, Han ZHU, Bo CHEN. Research on Aggregation Technology for Information Security Knowledge Based on Security Ontology [J]. Netinfo Security, 2017, 17(4): 78-85.
[7]	Jingzhe ZHOU, Changsong CHEN. Analysis of Network Information Security in the Cloud Computing Architecture [J]. Netinfo Security, 2017, 17(11): 74-79.
[8]	Qi SU, Wei WANG, Yin LIU, Zhanpeng YU. Research on the Scheme of Information Security Protection in Electric Power Industry [J]. Netinfo Security, 2017, 17(11): 84-88.
[9]	Nana HUANG, Liang WAN, Xuankun DENG, Huifan YI. A Cross Site Script Vulnerability Detection Technology Based on Sequential Minimum Optimization Algorithm [J]. Netinfo Security, 2017, 17(10): 55-62.
[10]	Lei ZHANG, Dongsheng YU, Jun YANG, Jiming HU. Research on Information Security Supervision Strategy Based on Private Cloud Model [J]. Netinfo Security, 2017, 17(10): 86-89.
[11]	WANG Yubin, CHEN Si, CHENG Nan. Research on Industrial Control System Security Defense [J]. 信息网络安全, 2016, 16(9): 35-39.
[12]	FU Xin, LU Yuhua, SHAO Zijian. Research on Information Security Simulation Experimental Platform of Public Security Video Monitoring System [J]. 信息网络安全, 2016, 16(9): 56-59.
[13]	YU Shiyuan, WANG Yutian, LIU Xin. Burpsuite Extender Apply in Vulnerability Scanning [J]. 信息网络安全, 2016, 16(9): 94-97.
[14]	LI Tao, ZHANG Chi. Research on Network Security Risk Model Based on the Information Security Level Protection Standards [J]. 信息网络安全, 2016, 16(9): 177-183.
[15]	HAN Xinyi. Research on Network Information Security Regulation of Megalopolises [J]. 信息网络安全, 2016, 16(6): 74-80.