•   Home
  • Proceedings
  • Proceedings of 2010 Cross-Strait Conference on Information S...

Proceedings of 2010 Cross-Strait Conference on Information Science and Technology (CSCIST 2010 E-BOOK)

Qinhuangdao,China,7.9-7.13,2010

ISBN: 978-1-935068-15-0 Scientific Research Publishing, USA

E-Book 840pp Pub. Date: July 2010

Category: Computer Science & Communications

Price: $120

Title: Research on Risk Analysis-Based Access Control Model of Application System
Source: Proceedings of 2010 Cross-Strait Conference on Information Science and Technology (CSCIST 2010 E-BOOK) (pp 750-755)
Author(s): Zhimin Gao, Research Centre of Information Security Architecture, Beijing Jiaotong University, Beijing
Shengyuan Wang, School of Software and Microelectronics,Peking University, Beijing
Abstract: Facing to complex application systems, an access control model based on the risk analysis is proposed. The directed connection between the business objectives and the access control strategies is established in the model according to the concept of risk, with business process operational performance indicators as a basis on the risk measurement and the risk calculation as the constraint equation of the access control authorization decision. At the same time, besides the principle of least privilege and the principle of responsibility of separation, the principle of "business-security "equilibrium is also given, and according to which the appropriate authorization decision rules are also established. The research results in the article aid to establish a flexible decision-making method to adapt to the development of the business flexibility and interoperability, with getting rid of the "safe or unsafe" dual authorization decision rule.
Proceedings by Subjects
Resources
Products
Contact us
book@scirp.org
WhatsApp +86 18163351462(WhatsApp)
Click here to send a message to me 1243940697
Book Publishing WeChat
Follow SCIRP
Free SCIRP Newsletters
Copyright © 2006-2024 Scientific Research Publishing Inc. All Rights Reserved.
Top