| With the arrival of the times of information, the World Wide Web has becom an indispensable part of people's everyday life. However, its defect is also evident, informations on the web are presented mostly in an unstructured way and the HTML can do nothing about it, while making the web more and more flaring. The conception of Semantic Web is put forward right aiming at that issue. From the aspect of the layout of Semantic Web, the security of XML takes a significant position in the whole field of the security of Semantic Web.This paper foucs on the access control mechanism for XML documents and discussed the issue of the combination of the trantional RBAC modle and the XML. On the basis of the abundant previous research achievement, this paper designs an access control model well suited for XML documents named as SO-RBAC, valuing syncretism and innovation, from both the aspects of the limitation of RBAC and the inner characteristics of XML.This paper lays emphasis on a resource-oriented ideology due to the highly structured framework of XML documents, under the guidance of the the fine-grained access control principle, thus specifies and improved the conception of propagation of authorizations. At the same time, this paper also takes practicability into account, imports a corarse-grained access control mechanism into fined-grained access control as an assist, with the combination of CL and ACL. After that, this paper presented two characteristics named as conditional access control and roles with arrributes, presented a integrated strategy for two familiar short comings of classical RBAC model under the condition of the presence of propagation of authorizations. Finally, this paper introducs a conception of authorization redundancy classifying the authorization set into two parts according to it, and designs a systematic framework for SO-RBAC modle uniting previous merits. |
PDF Full Text Request