尽管这是一个普遍存在的安全问题,但是SSO会使这个问题更加严重,因为恶意用户可以访问所有获得授权的资源。
Although this is a problem with security in general, it is worse with SSO because all authorized resources are compromised.
提出了一种改进的扩充攻击树结构和攻击树算法,依据用户SPRINT计划来识别授权用户的恶意行为。
An improved augmented attack tree and attack tree algorithms were proposed, which can identify malicious activities from authorized insiders in terms of their SPRINT plan.
应用推荐