To the access control of the enclave boundary security, this paper proposed a double authenticate based security-level access control model. The model fused the concept of role privilege and workflow. It implemented the access control based role privilege, the distributed of dynamic authority based workflow, the mandatory access control based security label.%针对等级保护中安全标记保护级(三级)系统的区域边界访问安全,将角色特权概念与任务工作流概念相结合,提出了一个基于安全标记的双认证访问控制模型.实现了基于角色的"特权"访问控制、基于工作流的动态权限管理访问控制和基于安全标记的强制访问控制.
展开▼
