针对现有设备控制方法的粗粒度和简单性问题,本文提出了一种基于用户身份的外围设备访问控制方法。该方法利用角色、用户组及个人的外围设备访问控制列表实现灵活且细粒度的权限管理。基于Linux操作系统设计并实现了框架,通过特征数据库识别各类设备,政策数据库定义与角色、用户组和个人相关的访问权限,并设置仲裁流程检查外设访问。最终通过功能测试验证了方法的有效性。
摘要:
With respect to the coarse granularity and simplicity of the existing equipment control methods, we propose a peripheral access control method based on user identification, which can achieve a flexible and fine-grained access control for peripherals by using peripheral role access control lists, user group peripheral access control lists and user peripheral access control lists. Based on Linux operating system, we design and implement a framework, in which we utilize a peripheral feature database to identify a variety of devices; a policy database to define access permissions in connection with roles, user groups and users; and an arbitration procedure to check the accesses of peripherals. Finally, the functions are tested to verify the validity of the method and the features of the method are analyzed.
展开
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
