| 科学基金管理系统的用户权限管理模式研究 |
| |
| 引用本文: | 李东,施懿闻,郝艳妮,毛基业.科学基金管理系统的用户权限管理模式研究[J].微机发展,2012(2):159-164,167. |
| |
| 作者姓名: | 李东 施懿闻 郝艳妮 毛基业 |
| |
| 作者单位: | [1]国家自然科学基金委员会信息中心,北京100085 [2]中国人民大学商学院,北京100872 [3]爱瑞思软件(深圳)有限公司,广东深圳518057 |
| |
| 基金项目: | 国家自然科学基金专项基金项目(M1021006) |
| |
| 摘 要: | 针对科学基金管理系统权限管理的灵活需求,文中总结了当前主流的访问控制模型和行业最佳实践,并设计了"角色-项目"松耦合的权限管理模式。通过一个具体案例显示,通过合理的角色结构设计,结合基于工作流、角色等级的RBAC模型,该模式可以有效解决大型科学基金管理系统所面临的用户权限管理问题,如难以实现时间维度的控制、不能分级授权等问题,并能适应业务需求的发展和变化。此外,文中提出的信息系统权限管理模式的设计思路,弥补了目前权限管理领域缺乏的应用研究。
|
| 关 键 词: | 权限管理 访问控制 角色结构 |
Research on Access Control to Grant Management Systems |
| |
| LI Dong,SHI Yi-wen,HAO Yan-ni,MAO Ji-ye.Research on Access Control to Grant Management Systems[J].Microcomputer Development,2012(2):159-164,167. |
| |
| Authors: | LI Dong SHI Yi-wen HAO Yan-ni MAO Ji-ye |
| |
| Affiliation: | 1.Information Center,National Natural Science Foundation of China,Beijing 100085,China; 2.School of Business,Renmin University of China,Beijing 100872,China; 3.IRIS Systems(Shenzhen) Co.,Ltd,Shenzhen 518057,China) |
| |
| Abstract: | In response to the need for flexible access control to research grant management systems,it reviews the current access control models and best practices,and proposes a "role-project" loose coupling model for access control.Conducted a case study to show that,through proper role structure design and RBAC based on workflows and role hierarchy,the model can solve problems faced by a large research grant management system,e.g.,difficulties with time-based control and the inability to allow decentralized delegation of access privilege.It is also shown that the model can adapt to changes arising from rapid business development.Moreover,propose a generic approach to design solutions for access control to information systems,to make up for the lack of application-oriented research in this field. |
| |
| Keywords: | management of access privilege access control role structure |
| 本文献已被 维普 等数据库收录! |
|
