量化风险自适应的访问控制是现在系统安全领域的一个研究热点,但XACML( eXtendable Access Control Markup Language)的实现未考虑量化风险自适应访问控制机制.在XACML的基础上,充分利用其强大的访问策略表达能力,在不改变访问请求语义的情况下加入了量化风险的控制功能,并扩展XACML框架,添加持续的访问控制风险管理机制,实现了量化风险自适应的访问控制.%Quantified risk adaptive access control is a focus of research in the field of system information security at present. But the implementations of XACML have not considered the mechanism of quantified risk adaptive access control. Based on the investigation of XACML, we make full use of its great expressing ability in access control policy to add control functions of quantified risk to the system without changing the semantics of access request. And the framework of XACML has also been extended to implement the quantified risk adaptive access control by adding durative risk management mechanism of access control.
展开▼
