分布式系统安全访问控制问题的分析-计算机软件与理论专业论文.docx

II II Abstract The system security issue has been a hot and difficult issue in the system research field, it is particularly important especially in a distributed environment. This paper will conduct depth research on security access control method in the distributed system. Access control is an important measure to guarantee the security of a system, can restrict the rights of users to access the system resources, in order to prevent the illegal users to access resources or the security problems caused by the misoperations of legitimate users. Role-based access control has become a research hotspot in the field of access control in recent years; it realizes the logic separation from users to permissions through the introduction of roles. To complete some larger tasks, the resources need to be frequently accessed by other computers. In order to ensure the access between distributed systems to be more secure and effective, the foreign visitors need to be granted the appropriately permissions in this system. This paper analyzes the existing problems of the access control in distributed environment, then improves the existing deficiencies in the role inheritance according to these problems, and describes a way to achieve cross-domain authorization based on the further refinement permissions, which can resolve the security problems of resource exchange access between systems. At present, the modeling of software system usually does not consider the security policies and security mechanisms, this leads to a lot of security risks in such aspects as security maintenance and system integration during the late development of systems. This paper explores a kind of methods which can integrate RBAC features into the system, At the same time, the traditional access control lists have the following disadvantages: descriptive low, not enough flexibility, and difficult to transmit between different systems, etc., it is difficult to meet the access control demands of the system. The