This includes identification and authentication, authorization, access control, data masking, auditing, and encryption.
这包括识别、认证、授权、访问控制、数据屏蔽、审计和加密。
They both share a lot of concepts and a domain — the domain of authentication, authorization, and access control.
它们有很多相同的概念,要处理的问题域也在很大程度上重叠:验证、授权和访问控制。
A typical access control and authorization scenario includes three main entities — a subject, a resource, and an action — and their attributes.
典型的访问控制和授权场景包括三个主要实体:主体、资源和动作以及它们的属性。
This type of authorization testing might be called fine-grained access control because it is applied by a running program to virtually any type of resource that the program works with.
此类授权测试可以称为细粒度访问控制,因为运行应用程序将其应用于该程序所使用的几乎任何类型的资源。
XACML builds on SAML by providing the actual semantics used to define access control policy and authorization request and response messages.
XACML构建于SAML之上,提供了用于定义访问控制和授权请求及响应消息的实际语义。
Access control within the portal domain is not based on the J2EE authorization model, because it is not powerful enough to be a viable solution for the portal authorization domain.
门户域中的访问控制没有基于J2EE授权模型,因为它不够强大,不足以成为可行的门户授权域解决方案。
The purpose of authorization is to control access to resources on a per-ID, per-role, or per-profile basis.
授权的目的是对每个ID、每个角色、或者每个概要进行访问控制。
If only the identity of the middle tier service is propagated to the downstream service, the downstream service does not have proper control over audit and authorization of access to the service.
如果只有中间层服务的标识传播到下游服务,则下游服务不能对服务访问审核和授权进行正确的控制。
Realm Write operations: Currently all Realm implementations support 'read' operations for acquiring authentication and authorization data to perform logins and access control.
Realm写操作:目前所有Realm实现都支持“读”操作来获取验证和授权数据以执行登录和访问控制。
This article describes the programming model for Human Task Manager staff resolution, which provides access control lists for instance-based authorization.
本文描述HumanTaskManager人员解析的编程模型,前者为基于实例的授权提供访问控制列表。
The objectDefinitionSource component contains access control definitions according to which authorization will take place.
objectDefinitionSource组件包含对应于将要发生的授权的访问控制定义。
The kind of authorization provided by a Web server like Apache might be called coarse-grained access control because it provides only an outer layer of security.
诸如apache等Web服务器提供的授权类型可以称为粗粒度访问控制,因为它只提供了一个外部安全层。
The authorization policies defined to the Object Authority Manager (OAM) control access based on user IDs and group membership.
ObjectAuthorityManager (oam)中定义的授权策略可以基于用户ID和组成员身份进行访问控制。
Using Acegi security provides your applications with comprehensive authentication, authorization, instance-based access control, channel security and human user detection capabilities.
使用Acegi安全性可以为应用程序提供全面的身份验证、授权、基于实例的访问控制、通道安全和人工用户检测功能。
Authorization is essentially access control - controlling what your users can access in your application, such as resources, web pages, etc.
授权实质上就是访问控制-控制用户能够访问应用中的哪些内容,比如资源、Web页面等等。
For this example, use the access Manager access control list (ACL) to manage the ObjectGrid authorization policies.
对于此示例,请使用AccessManager访问控制列表(Access Control List,ACL)来管理ObjectGrid授权策略。
Ben also talked about advanced web security requirements like method level authorization, JSR-250 for defining method security metadata, Spring security method metadata, and domain access control.
Ben还谈到了一些高级web安全需求,例如方法层的授权、定义方法安全元数据的JSR- 250规格、SpringSecurity方法元数据以及领域的访问控制等。
XACML (Extensible access control Markup Language) for federated authorization and access control.
联邦授权和访问控制的XACML(可扩展访问控制标记语言)。
It USES the access control definitions provided by the third parameter shown in Listing 9 to make authorization (or access control) decisions.
它使用清单9中第三个参数提供的访问控制定义来指定授权(或访问控制)决策。
Access control: Fine-grained access control might be necessary via a database lookup primitive, or a service invoke to an application specific authorization service.
访问控制:细粒度的访问控制可能是必须的,通过一个数据库查找原语或对特定于应用程序的授权服务的调用实现。
Usually PAC carries the authorization information that is used to make access-control decision.
通常pac包含制定访问控制决策所需的授权信息。
Remember that the authorization section can be used in web.config files placed in subdirectories, and can also be used in a element to control access to individual files.
记住authorization节点可以在子目录中的web .config文件中使用,也可以在元素中使用来控制访问单独的文件。
Task based access control (TBAC) is an initiative security model, where task is focus of work and dynamic authorization is used.
基于任务的授权控制(TBAC)则是以任务为中心,并采用动态授权的主动安全模型。
Authorization is handled in CM V8 with Access Control Lists (ACLs).
在CMV 8中,授权是通过访问控制列表(Access Control List,ACL)来处理的。
At last, based on attribute certificate, a model is constructed to solve the authorization and access-control problem, to realize secure access-control in the electronic government.
最后使用此策略构造了一个基于属性证书的授权和访问控制模型,能够灵活方便地实现电子政务中的安全访问控制。
Task based Access Control Model is task centered and offers dynamic authorization , so it belongs to the active security model.
基于任务的访问控制模型是一种以任务为中心,并采用动态授权的主动安全模型。
Based on this provisional authorization model, several problems of XML access control technology are discussed in detail.
在此临时授权模型基础之上,我们详细讨论了XML访问控制的若干技术问题。
Its architecture, promise & assurance mechanism, separation of duties of authorization and access control are discussed.
讨论了模型体系结构,承诺担保机制,授权职责分离以及访问控制。
The system meets the demands of uniform authorization and access control, possessing the merits of good security, high flexible and easy to management.
该系统满足了统一授权和访问控制的需求,具有安全性好、灵活性高、便于管理等特点。
The system meets the demands of uniform authorization and access control, possessing the merits of good security, high flexible and easy to management.
该系统满足了统一授权和访问控制的需求,具有安全性好、灵活性高、便于管理等特点。
应用推荐