| 基于角色的访问控制的实现与应用 |
| |
| 引用本文: | 吴振兴,熊璋,方义.基于角色的访问控制的实现与应用[J].计算机与现代化,2004(12):128-131. |
| |
| 作者姓名: | 吴振兴 熊璋 方义 |
| |
| 作者单位: | 北京航空航天大学计算机学院,北京,100083 |
| |
| 摘 要: | 从应用的角度,介绍了RBAC的多种实现层次以及各层次实现时的特点。提出了一个在应用程序层次实现RBAC的设计实例,使用操作系统自身提供的安全特性实现了可靠的用户鉴别,同时为保证有效控制对数据库的访问,引入应用服务器作为工作站和数据库服务器的中介。该设计实例结合活动目录和DCOM技术,可靠地实现了基于角色的访问控制,具有较好的安全性。
|
| 关 键 词: | RBAC 实现层次 活动目录 DCOM |
| 文章编号: | 1006-2475(2004)12-0128-04 |
| 修稿时间: | 2004年2月22日 |
Implementation and Application of Role-Based Access Control |
| |
| WU Zhen-xing,XIONG Zhang,FANG Yi.Implementation and Application of Role-Based Access Control[J].Computer and Modernization,2004(12):128-131. |
| |
| Authors: | WU Zhen-xing XIONG Zhang FANG Yi |
| |
| Abstract: | The different levels of RBAC model implementation and their characters are discussed.An implementation of RBAC model on the application level is also presented.This implementation makes use of the security character provided by the operating system to authenticate user in a high security way and introduces application server as agency between database and workstation.Based on active directory and DCOM,this implementation controlls database access reliably according to RBAC model and achieves high security. |
| |
| Keywords: | RBAC implementation level active directory DCOM |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
