本文基于安全操作系统中角色定权的强制访问控制框架(RBA),吸取了认证可信度模型中对用户可信度的一些描述手段,在Kylin操作系统中提出了一种基于用户可信度的隐式角色动态转换机制.通过量化认证系统不确定性和限定角色的转换及转换范围,增加了用户权限的灵活度,在实现了透明角色转换的同时,保证了系统的安全与稳定.%In the paper, based on the Role Based Authorization framework (RBA) in secure Operation Systems (OSs), we propose an approach to dynamic role transition in Kylin OS, using the way of trustworthiness measurement for the uncertainties in authentication systems. In the model, through quantifying the uncertainty of authentication and constraining the bound of role transition, the process of role transition can be completely transparent to users, thus guaranteeing the safety and stability of OS.
展开▼