| 基于RBAC的扩展访问控制模型 |
| |
| 引用本文: | 王振江,刘强.基于RBAC的扩展访问控制模型[J].计算机工程与应用,2005,41(35):23-25,58. |
| |
| 作者姓名: | 王振江 刘强 |
| |
| 作者单位: | 清华大学软件学院,北京,100084 |
| |
| 基金项目: | 国家863高技术研究发展计划“网络化集成开发项目管理方法研究及工具实现”(编号:2004AA413120) |
| |
| 摘 要: | 权限管理是信息系统的重要环节,一个好的权限管理系统是成功的信息系统的重要因素。基于角色的权限控制策略提供了较高的灵活性和较低的管理负担,是目前研究的重点,文章在经典的基于角色的访问控制模型(RBAC)和基于任务的访问控制模型(TBAC)的基础上,对角色的管理和权限的定义进行了扩展,定义了更加灵活的基于角色的扩展权限控制模型XRBAC(Extended Role-Based Access Control)。
|
| 关 键 词: | 基于角色的权限控制 对象 任务 抽象角色 接口角色 约束 |
| 文章编号: | 1002-8331-(2005)35-0023-03 |
| 收稿时间: | 2005-07 |
| 修稿时间: | 2005-07 |
Extended Access Control Model Based on RBAC |
| |
| Wang Zhenjiang,Liu Qiang.Extended Access Control Model Based on RBAC[J].Computer Engineering and Applications,2005,41(35):23-25,58. |
| |
| Authors: | Wang Zhenjiang Liu Qiang |
| |
| Affiliation: | School of Software,Tsinghua University, Beijing 100084 |
| |
| Abstract: | Authority Management is a most important aspect of Information Systems.A successful information system is always supported by a well-designed access control system.Role-based access control policy,which is the focus of access control study nowadays,is more flexible and less management burden.Based on Role-Based Access Control(RBAC) and Task-Role-based Access Control,this paper gives a flexible extended access contrl models,XRBAC,standing for Extended Role-Based Access Control,which extends the definition of role management and authority. |
| |
| Keywords: | RBAC object task abstract role interface role constraint |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
