Dynamic access control framework facing internal attack

A dynamic access control and internal attack technology, applied in the direction of electrical components, transmission systems, etc., can solve the problems of ignoring the cumulative risk of users, ignoring constraints, and only considering, so as to prevent illegal and malicious access behaviors and protect Network resources, effects of access prevention
CN109495474AActive Publication Date: 2019-03-19NANJING UNIV OF AERONAUTICS & ASTRONAUTICS
9 Cites 3 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Patent Type
Applications(China)
Current Assignee / Owner
NANJING UNIV OF AERONAUTICS & ASTRONAUTICS
Publication Date
2019-03-19

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses a dynamic access control framework facing internal attacks, and belongs to the technical field of information security access control. The dynamic access control framework comprises a submission of an access request, a calculation of user enablement roles, a calculation of enablement roles permissions, a selection of the enablement roles, a reduction of candidate enablementroles, and a calculation of risk values. According to the dynamic access control framework facing the internal attacks, the satisfiability of environmental constraints in an access control policy isevaluated by using an environment model, thereby achieving dynamic adjustment of user authority, and preventing accesses of illegal users; permission ranges of legal users are constrained according tostrategy constraints and risk analysis, thereby avoiding internal attacks of malicious users; and a triple control of access requests is achieved by analyzing environmental information, the strategyconstraints, and access risks, thereby preventing illegal and malicious access behaviors can in time, more effectively protecting network resources, and guaranteeing safe and efficient operation of the system.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to a dynamic access control framework, in particular to an internal attack-oriented dynamic access control framework, and belongs to the technical field of information security access control. Background technique

[0002] In order to correctly authorize all kinds of information resources on the network, at present, researchers mainly use access control mechanisms to block illegal users from accessing resources. But in real life, not all legitimate users are trusted users, and some legitimate users may abuse the obtained permissions and damage the use of enterprises. , 28% of respondents said they had suffered internal attacks, and 32% of respondents believed that internal attacks were more harmful than external attacks.

[0003] The role-based access control model RBAC can effectively reduce the complexity of authorization management compared with other access control models, such as mandatory access control and autonomous acces...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More