• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2008, Vol. 30 ›› Issue (6): 106-110.

• 论文 • 上一篇    下一篇

基于描述逻辑的策略冲突检测方法研究及实现

王晓贺 蔡国永   

  • 出版日期:2008-06-01 发布日期:2010-05-19

  • Online:2008-06-01 Published:2010-05-19

摘要:

采用基于策略的方法对安全管理、服务质量等进行监管,已经得到广泛应用。本文提供了一种基于描述逻辑的策略建模方式,将策略定义为两种类型,即授权策略和义务策略;建立策略相关的概念,结合概念之间的关系得到基于描述逻辑的策略模型。策略冲突会导致不一致的系统行为,是策略分析最重要的内容。本文深入研究了不同类型的策略  略冲突,在所建立的模型基础上提出了一套基于描述逻辑的策略冲突检测方法,并使用推理机Racer举例验证了这种检测方法。

关键词: 策略建模 描述逻辑 策略冲突 冲突检测 Racer推理机

Abstract:

The policy-based implementation of security management and quality of service has already gained wide applications. This paper proposes a way to represent a policy system model based on description logic. We divide policies into two different types: authorization policy and obligation policy, and def  fine the concepts and the role relations among them according to their features, and we can express a policy model via description logic. Policy conflicts can cause undesirable system behaviors, which is the most important part among policy reasoning. This paper deeply explores the different classifications of policy conflicts , and we give several approaches according to the policy model for detecting policy conflicts via description logic. An example  is given to explain these conflict detection approaches by using a logic reasoning machine named Racer.

Key words: policy modeling, description logic, policy conflict, conflict detection, Racer