| 基于团队和任务的RBAC访问控制模型 |
| |
| 引用本文: | 张帅,陈晓辉,侯桂云.基于团队和任务的RBAC访问控制模型[J].通信技术,2009,42(11):119-120. |
| |
| 作者姓名: | 张帅 陈晓辉 侯桂云 |
| |
| 作者单位: | 桂林工学院电子与计算机系,广西,桂林,541004 |
| |
| 摘 要: | 文中提出了一个新的访问控制和授权管理模型,即基于团队和任务的RBAC模型(TT-RBAC)。通过在TT-RBAC模型中增加团队和任务,扩展了NISTRBAC模型。TT-RBAC的基本思想是将用户指派给角色和团队,角色和任务指派给团队,权限指派给角色和任务。通过为团队用户分配任务,使用户可以访问团队资源。但是,用户从团队获得的权限决定于用户的激活角色及团队的激活任务。所以TT-RBAC模型比传统的RBAC模型更加灵活。
|
| 关 键 词: | 访问控制 授权管理 RBAC 团队 任务 |
Team-and-Task Based RBAC Access Control Model |
| |
| ZHANG Shuai,CHEN Xiao-hui,HOU Gui-yun.Team-and-Task Based RBAC Access Control Model[J].Communications Technology,2009,42(11):119-120. |
| |
| Authors: | ZHANG Shuai CHEN Xiao-hui HOU Gui-yun |
| |
| Affiliation: | (Department of Computer, Guilin University of Technology, Guilin Guangxi 541004, China) |
| |
| Abstract: | This paper describes a new paradigm for access control and authorization management, this is, team and-task-based RBAC (TT-RBAC). NIST RBAC model is extended through adding these two basic data elements to TT RBAC. This model as a whole is fundamentally defined in terms of individual users being assigned to roles and teams, roles and tasks being assigned to teams and permissions being assigned to roles and tasks. Through assigning the task to team users, the users could make access to the team resources specified by assigned tasks. However, for each user, the acquired privilege from the team is determined by his/her activiated roles and the activiated task of the team. So TT RBAC model could provide more flexibility than the traditional RBAC model. |
| |
| Keywords: | RBAC |
| 本文献已被 维普 万方数据 等数据库收录! |
|
