| 基于组织建模的企业级信息系统访问控制模型 |
| |
| 引用本文: | 陆淑娟,徐新艳,陈小燕.基于组织建模的企业级信息系统访问控制模型[J].计算机工程与设计,2011,32(2):471-476. |
| |
| 作者姓名: | 陆淑娟 徐新艳 陈小燕 |
| |
| 作者单位: | 南京工业大学电子与信息工程学院,江苏南京,210009 |
| |
| 基金项目: | 南京工业大学自然科学研究基金项目(39709010) |
| |
| 摘 要: | 针对企业级信息系统访问控制中由于用户、角色与资源客体数量多而引起的控制复杂这一问题,提出了基于组织建模的访问控制设计思想。借鉴组织视图建模思想对传统RBAC模型中角色概念进行拓展,对客体分类并进行组件化设计以支持访问粒度控制。在此基础上给出一个基于组织建模的企业级信息系统访问控制模型,定义了一组模型要素并给出了实现访问控制的机理。最后给出一个基于组织建模的访问控制模型实现,并结合具体实例表明了该模型的可行性和有效性。
|
| 关 键 词: | 访问控制 角色 权限 组织建模 企业级信息系统 |
Access control model based on organization modeling for enterprise information systems |
| |
| LU Shu-juan,XU Xin-yan,CHEN Xiao-yan.Access control model based on organization modeling for enterprise information systems[J].Computer Engineering and Design,2011,32(2):471-476. |
| |
| Authors: | LU Shu-juan XU Xin-yan CHEN Xiao-yan |
| |
| Affiliation: | LU Shu-juan,XU Xin-yan,CHEN Xiao-yan(College of Electronics and Information Engineering,Nanjing University of Technology,Nanjing 210009,China) |
| |
| Abstract: | Aimed at the problems of access control complexity caused by numerous users,roles and resource objects in enterprise wide information systems,a design method of access control based on organization modeling is presented.It is pointed that the role concept in traditional role based access control(RBAC) model can be extended by using the philosophy of the modeling methodology of organi-zation view and the access granularity control can be achieved by classifying and componentizing resource objects.Then,an acc... |
| |
| Keywords: | access control role permission organization modeling enterprise information systems |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
