| 基于任务和角色访问控制模型分析与研究 |
| |
| 引用本文: | 于万钧,苏畅,刘杰,樊志华. 基于任务和角色访问控制模型分析与研究[J]. 东北电力学院学报, 2006, 26(4): 36-40 |
| |
| 作者姓名: | 于万钧 苏畅 刘杰 樊志华 |
| |
| 作者单位: | 东北电力大学,信息工程学院,吉林,吉林,132012;东北电力大学,信息工程学院,吉林,吉林,132012;东北电力大学,信息工程学院,吉林,吉林,132012;东北电力大学,信息工程学院,吉林,吉林,132012 |
| |
| 基金项目: | 东北电力大学校科研和教改项目;国家自然科学基金;国家自然科学基金 |
| |
| 摘 要: | 近年来RBAC(Role-B ased Access Contro1)及TBAC(Task-B ased Access Contro1)模型得到广泛的研究。在比较了一些现有访问控制模型的各自特点和适用范围,针对现有模型的不足,为了提高信息系统的安全性、通用型和实用性,通过结合RBAC及TBAC模型各自的优点,提出了一个新型的访问控制模型TRBAC(Task-Role B ased Access Contro1),描述了TRBAC模型结构和特点,阐述了模型对最小权限原则、职权分离原则、数据抽象原则及角色层次关系的支持,并指出将来工作的主要目标。
|
| 关 键 词: | 角色 权限 基于任务和角色的访问控制 |
| 文章编号: | 1005-2992(2006)04-0036-05 |
| 收稿时间: | 2006-03-10 |
| 修稿时间: | 2006-03-10 |
Analysis and Research on Task-Role Based Access Control Models |
| |
| YU Wan-jun,SU Chang,LIU Jie,FAN Zhi-hua. Analysis and Research on Task-Role Based Access Control Models[J]. Journal of Northeast China Institute of Electric Power Engineering, 2006, 26(4): 36-40 |
| |
| Authors: | YU Wan-jun SU Chang LIU Jie FAN Zhi-hua |
| |
| Affiliation: | School of Information Engineering , Northeast Dianli University, JIlin City,Jilin Province 132012 |
| |
| Abstract: | The research work of RBAC(role-based access contro1)and TBAC(task-based access contro1)is greatly emphasized in recent years.This paper compares the characteristics and applicability spectrum of some recent models.To the deficiency of the existing model,in order to improve the security,compatibility and practicability of application systems,through combining the advantages of RBAC and TBAC model,a new-type model,T-RBAC(task-role based access contro1),is discussed.The configuration and characteristics of the model is described.The support of least privilege,separation of duties,data abstraction and roles hierarchies in the model is explained.The main goal of future research is presented. |
| |
| Keywords: | Role Permission TRBAC |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
