| 基于JAAS企业级的访问控制模型 |
| |
| 引用本文: | 徐光伟,尹建伟,陈刚,董金祥. 基于JAAS企业级的访问控制模型[J]. 计算机工程, 2005, 31(9): 67-69,215 |
| |
| 作者姓名: | 徐光伟 尹建伟 陈刚 董金祥 |
| |
| 作者单位: | 浙江大学计算机科学与技术学院,杭州,310027;浙江大学计算机科学与技术学院,杭州,310027;浙江大学计算机科学与技术学院,杭州,310027;浙江大学计算机科学与技术学院,杭州,310027 |
| |
| 基金项目: | 国家“863”计划基金资助项目(2001AA415220) |
| |
| 摘 要: | 目前RBAC模型已得到广泛的认同,但传统的RBAC实现脱离了企业的组织架构,同时认证模块与应用程序紧耦合也可给系统的维护和实现带来困难.该文在大量研究已实现RBAC模型的基础上提出了基于Principal的认证与授权模型、算法的大致思想,并提供了基于J2EE的实现方案.
|
| 关 键 词: | 访问控制 企业级 责任人 JAAS J2EE |
| 文章编号: | 1000-3428(2005)09-0067-03 |
Access Control Model Based on JAAS Enterprise |
| |
| Xu Guangwei,Yin Jianwei,CHEN Gang,Dong Jinxiang. Access Control Model Based on JAAS Enterprise[J]. Computer Engineering, 2005, 31(9): 67-69,215 |
| |
| Authors: | Xu Guangwei Yin Jianwei CHEN Gang Dong Jinxiang |
| |
| Abstract: | Current RBAC models have gained general recognition, but the realization of traditional RBAC is divorced from the organizational structure of enterprises, and the tight coincidence of authentication modules and applications causes troubles to maintenance and realization of the system. A principal-based authentication , authorization model and algorithm are introduced and they are based on the realized RBAC models, as well as a J2EE-based realization is presented. |
| |
| Keywords: | Access control Enterprise Principal Java authentication and authorization service (JAAS) J2EE |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
