域间动态角色转换中的静态互斥角色约束违反.pdfVIP

计算机研究与发展 ISSN 1000．1239|CN 11．1777|TP Journal of Computer Research and Development 45(4)：677～683，2008 域间动态角色转换中的静态互斥角色约束违反 翟征德 徐 震 冯登国 (中国科学院软件研究所信息安全国家重点实验室 北京 100080) (zhaizhengde@is．iscas．ac．cn) Violation of Static Mutual Exclusive Role Constraints in Dynamic Role Transition Zhai Zhengde，Xu Zhen，and Feng Dengguo (State Key Laboratory of Information Security，Institute of Software，Chinese Academy of Sciences，Beijing 100080) Abstract Secure interoperation is a crucial technique for cross—domain resource sharing and protection．In the IRBAC2000 model，Kapadia proposes role association and dynamic role translation，through which secure interoperation can be accomplished in a very flexible way．The fact that the model can cause violations of static mutual exclusive role(SMER)constraints is firstly discovered by Liao Junguo et al，the reason for which is also analyzed．A detection algorithm for SMER violations and prerequisite conditions for adding new role associations are also presented．In the paper，it is firstly made clear that Liao’S assertion about the reason of constraint violations is only partial and thus violations can not be totally prohibited．It is also clarified that under the circumstance of given role associations the inappropriate user／role assignments in other domains are the real reason behind．Then the necessary and sufficient condition for SMER violation is proposed and a corresponding algorithm for violation detection is presented．Because both new role associations and new user／role assignments can cause SMER violation，prerequisite conditions for adding them are subsequently proposed，which can ensure that the SMER constraints are always enforced during the state transitions of the mode1． Key words secure interoperation；dynamic role translation；role association；static mutual exclusive role； constrain