| 基于RBAC与GFAC架构的访问控制模型 |
| |
| 引用本文: | 欧晓鸥,王志立,魏建香.基于RBAC与GFAC架构的访问控制模型[J].计算机应用,2008,28(3):612-614. |
| |
| 作者姓名: | 欧晓鸥 王志立 魏建香 |
| |
| 作者单位: | 南京人口管理干部学院,信息科学系,南京,210042 |
| |
| 基金项目: | 南京人口管理干部学院重点科研基金 |
| |
| 摘 要: | 在对基于角色的访问控制(RBAC)模型进行优化处理的基础上,提出了一种基于RBAC与通用访问控制框架(GFAC)的访问控制模型。阐述了模型的构成、特点及其访问控制策略,引入了类、约束和特殊权限等新概念,将分级授权、最小化授权、角色继承授权等策略相结合,实现对资源访问的控制。该模型可配置性强,容易维护,降低了授权管理的复杂性。最后给出了模型实现的关键技术。
|
| 关 键 词: | 基于角色的访问控制 通用访问控制框架 访问控制 权限管理 |
| 文章编号: | 1001-9081(2008)03-0612-03 |
| 收稿时间: | 2007-10-18 |
| 修稿时间: | 2007-12-24 |
Model for access control system based on RBAC and GFAC |
| |
| OU Xiao-ou,WANG Zhi-li,WEI Jian-xiang.Model for access control system based on RBAC and GFAC[J].journal of Computer Applications,2008,28(3):612-614. |
| |
| Authors: | OU Xiao-ou WANG Zhi-li WEI Jian-xiang |
| |
| Affiliation: | OU Xiao-ou,WANG Zhi-li,WEI Jian-xiang(Department of Information Science,Nanjing Institute of Population Management,Nanjing Jiangsu 210042,China) |
| |
| Abstract: | On study of Role-Based Access Control(RBAC)model and Generalized Framework for Access Control(GFAC),the generalized model for access control based on RBAC and GFAC was presented.The characteristics of this model and the control policy were described,in which the group permission,constraint elements and special permission were introduced.Combining techniques of layered authorization,minimizing privileges and role inherited authorization,the RBAC was optimized by enforcing access control on the request.It can... |
| |
| Keywords: | Role-Based Access Control (RBAC) Generalized Framework for Access Control (GFAC) access control right manage |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用》浏览原始摘要信息 |
|
点击此处可从《计算机应用》下载全文 |
