| 基于用户集扩展的任务和角色访问控制模型 |
| |
| 引用本文: | 张秋余,吴佩莉.基于用户集扩展的任务和角色访问控制模型[J].计算机工程与设计,2008,29(13). |
| |
| 作者姓名: | 张秋余 吴佩莉 |
| |
| 作者单位: | 兰州理工大学计算机与通信学院,甘肃,兰州,730050 |
| |
| 摘 要: | 通过分析基于任务和角色的访问控制模型,以及静态授权和动态授权各自的优缺点,针对目前访问控制模型很少考虑企业组织结构对其实现影响的不足,引入企业人员的组织方式,提出了一种基于用户集扩展的任务和角色访问控制模型,并详细介绍了建模思想.其基本思想是因企业人员具有一个固定的职能角色和多个动态的业务角色,职能角色采用静态授权、业务角色采用动态授权.最后利用形式化描述对模型进行了验证,并简述了其实现的策略.
|
| 关 键 词: | 访问控制 用户集 组织 角色 静态授权 动态授权 |
Task-role-based access control model with expanded user set |
| |
| ZHANG Qiu-yu,WU Pei-li.Task-role-based access control model with expanded user set[J].Computer Engineering and Design,2008,29(13). |
| |
| Authors: | ZHANG Qiu-yu WU Pei-li |
| |
| Affiliation: | ZHANG Qiu-yu,WU Pei-li(College of Computer , Communication,Lanzhou University of Technology,Lanzhou 730050,China) |
| |
| Abstract: | By analyzing their respective advantages and disadvantages among task-role-based access control model,static and dynamic authority,current access control models is founded which take little account of enterprise organizational structure.By presenting organi-zational structure,a task-role-based access control model with expanded user set is introduced,and the model is described in detail as well.The core idea of the model is that each employee has a fixed functional role and several business roles.The static... |
| |
| Keywords: | access control user set organization role static-authorization dynamic-authorization |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
