首页> 外国专利> DETERMINATION OF ACCESS CHECKS IN A MIXED ROLE BASED ACCESS CONTROL AND DISCRETIONARY ACCESS CONTROL ENVIRONMENT

DETERMINATION OF ACCESS CHECKS IN A MIXED ROLE BASED ACCESS CONTROL AND DISCRETIONARY ACCESS CONTROL ENVIRONMENT

机译：基于混合角色的访问控制和自由访问控制环境中访问访问的确定

页面导航

摘要
著录项
相似文献

摘要

A computer implemented method, apparatus, and computer program product for access control in a mixed discretionary access control and role based access control environment. In one embodiment, an execution access for a command is determined using a set of role based authorizations for a user invoking the command. In response to a determination that the user invoking the command is authorized based on the set of role based authorizations, a privilege in a set of privileges associated with the command is raised. Raising the privilege in the set of privileges bypasses discretionary access control checks. In response to a determination that the user invoking the command is unauthorized based on the set of role based authorizations, an execution access for the command is determined using a set of discretionary access mode bits associated with the command.

机译：一种用于在混合的任意访问控制和基于角色的访问控制环境中进行访问控制的计算机实现的方法，装置和计算机程序产品。在一个实施例中，使用针对用户调用命令的一组基于角色的授权来确定对命令的执行访问。响应于基于基于角色的授权的集合确定了对调用命令的用户的授权，在与该命令相关联的一组特权中的特权被提高。在特权集中提高特权会绕过随意的访问控制检查。响应于基于所述基于角色的授权的集合确定调用所述用户的用户是未授权的，使用与所述命令相关联的一组自由访问模式位来确定对所述命令的执行访问。

著录项

公开/公告号US2008271139A1

专利类型
公开/公告日2008-10-30

原文格式PDF
申请/专利权人 SAURABH DESAI;NITEESH KUMAR DUBEY;RAVI A. SHANKAR;DREW THOMAS WALTERS;
展开▼

申请/专利号US20070742099
发明设计人 SAURABH DESAI;DREW THOMAS WALTERS;NITEESH KUMAR DUBEY;RAVI A. SHANKAR;
展开▼

申请日2007-04-30
分类号H04L9/32;
国家 US
入库时间 2022-08-21 20:13:55

相似文献

专利
外文文献
中文文献