RBAC的NIST模型在MIS中的设计与实现 |
| |
引用本文: | 赵国辉,孙涌,张书奎.RBAC的NIST模型在MIS中的设计与实现[J].微机发展,2005,15(3):57-59. |
| |
作者姓名: | 赵国辉 孙涌 张书奎 |
| |
作者单位: | 苏州大学计算机科学与技术学院,苏州大学计算机科学与技术学院,苏州大学计算机科学与技术学院 江苏苏州215006,江苏苏州215006,江苏苏州215006 |
| |
摘 要: | 管理信息系统的安全问题在许多领域都已成为首要的问题,而传统的安全系统的访问机制无法满足新系统的需求。文中介绍了基于角色访问控制(Role-basedAccessControl)的NIST(NationalInstituteofStandardsandTechnology)模型,根据备品备件管理信息系统的特点及对信息安全访问的具体要求,依据NIST模型设计并实现了基于角色的权限管理系统。实践表明:该系统能适应企业单位特定的安全策略,减轻系统安全的负担,而且能随组织结构或安全需求的变化而变化,具有很好的灵活性。
|
关 键 词: | 基于角色访问控制 权限管理 层次 管理信息系统 |
文章编号: | 1005-3751(2005)03-0057-03 |
修稿时间: | 2004年7月13日 |
Design and Implementation of NIST Model for RBAC in MIS |
| |
Abstract: | The security of the MIS(management information system) has already become primary problem in a lot of fields,the access mechanism of traditional security system is unable to meet new system's demands.This article introduces the NIST(National Institute of Standards and Technology) model for the RBAC(Role-based Access Control),based on characteristic of MIS of the store and spare part and concrete demand that infromation access safely, have designed and realized the role-based privilege management system accorded with NIST model. Practice shows: This system can meet enterprise unit's specific security tactics, can lighten the burden with safe system, and can vary with institutional framework or security demand, has very good flexibility. |
| |
Keywords: | RBAC privilege management level MIS |
本文献已被 CNKI 维普 等数据库收录! |
|