通过深入研究基于级联布隆过滤器的缓存方案,重新构造了基于角色的访问控制(RBAC)系统的缓存结构,设计并实现了基于交互式级联布隆过滤器的访问控制缓存系统.在访问控制决策点(PDP)上设计了专门的数据结构来存储基于角色的访问控制规则及其散列函数值,并根据这些信息高效地生成、更新辅助决策点(SDP)的级联布隆过滤器,降低了SDP对缓存存储空间的需求,提高了级联布隆过滤器的更新效率.该系统可应用于大规模、分布式的应用系统和网络系统,以加快访问控制速度,提升系统整体服务质量.%This paper studies the scheme based on cascade bloom filter, reconstructs the cache structure based on role-based access control (RBAC), and designs and implements the access control cache system based on interactive cascade bloom filter. This system uses special data structure to store the role-based access control rules and their hash values on the policy decision point (PDP) and efficiently generates and updates the cascade bloom filter on the sec-ondary decision point (SDP) based on this information, reducing requirements for cache storage space on the SDP and improving the updating efficiency of cascade bloom filter. This system can be used in large-scale,distributed appli-cation system and network system to speed up access control and improve the overall service quality of the system.
展开▼