| 面向Web服务工作流系统的访问控制模型 |
| |
| 引用本文: | 吴春雷,崔学荣.面向Web服务工作流系统的访问控制模型[J].微型电脑应用,2012,28(1):43-45,48,68,69. |
| |
| 作者姓名: | 吴春雷 崔学荣 |
| |
| 作者单位: | 中国石油大学计算机与通信工程学院,东营,257061 |
| |
| 基金项目: | 山东省自然科学基金资助项目(ZR2010FM037) |
| |
| 摘 要: | 提出了一种面向Web服务工作流系统的访问控制模型(WSWF-RBAC)。在基于角色的访问控制模型基础上引入系统资源的概念,把Web服务对象、属性和其它功能模块当做资源统一管理。引XT资源访问模式的概念,在约束条件下通过与资源的运算生成系统权限,从而实现了对权限的精细管理和动态调整能力。通过扩展web服务访问的角色集和用户集,并引入角色扮演对象,实现了工作流系统中Web服务与其它模块访问控制的一致性。将该模型应用于库房供应链系统中,运行结果表明,该模型能够增强Web服务工作流系统授权的灵活性和安全性。
|
| 关 键 词: | 访问控制 Web服务 工作流系统 RBAC 供应链 |
Access Control Model for Web Services Based on Workflow System |
| |
| Wu Chunlei,Cui Xuerong.Access Control Model for Web Services Based on Workflow System[J].Microcomputer Applications,2012,28(1):43-45,48,68,69. |
| |
| Authors: | Wu Chunlei Cui Xuerong |
| |
| Affiliation: | (Institute of Computer and Communication, China University of Petroleum, Dongying 257061,China ) |
| |
| Abstract: | An access control model for web services based workflow system is constructed. The concept of system resources is introduced on the base of RBAC model while the web service objects, their attributes, and other function modules are managed as resources. Then the concept of resource access mode is introduced, and it is multiplied by the resources to generate system permissions under the constraint ondition. Thus the ability of fine management and dynamic adjustment of permissions is improved. By expanding the role s∪t and user set for the access to web services, and by introducing role-playing actor, the access control consistency of web services and other modules in workflow system is achieved. This model is applied to warehouse supply chain system and operation results indicates that the model can enhance the authorization’ flexibility and security in the web services based workflow system. |
| |
| Keywords: | Access Control Web Services Workflow System RBAC Supply Chain |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
