| 一种面向服务的统一授权管理机制 |
| |
| 引用本文: | 罗东俊. 一种面向服务的统一授权管理机制[J]. 淮阴工学院学报, 2006, 15(1): 31-34 |
| |
| 作者姓名: | 罗东俊 |
| |
| 作者单位: | 广东商学院,信息学院,广州,510320 |
| |
| 摘 要: | 针对面向服务体系结构(Service-O riented Arch itecture,SOA)的授权管理中存在的安全问题,提出了一种面向服务的统一授权管理机制,阐述了授权原理,定义了数据模型,描绘了算法流程。该机制以RBAC(Role-Based Access Control)模型为基础,通过引入用户域概念和三种授权偏序关系,支持用户间代理,具备推理能力,为各SOA应用提供强访问控制。实践表明,该机制是简单、安全、有效的,具有很好的应用前景。
|
| 关 键 词: | 授权管理 访问控制 RBAC SOA |
| 文章编号: | 1009-7961(2006)01-0031-04 |
| 修稿时间: | 2005-10-20 |
A Uniform Permission Management Mechanism in Service- Oriented Architecture |
| |
| LUO Dong-jun. A Uniform Permission Management Mechanism in Service- Oriented Architecture[J]. Journal of Huaiyin Institute of Technology, 2006, 15(1): 31-34 |
| |
| Authors: | LUO Dong-jun |
| |
| Abstract: | In allusion to security problem in process of the permission management in Service-Oriented Architecture(SOA),this paper proposes a service-oriented uniform permission management mechanism,illustrates its permission principle,defines its data model,and depicts its arithmetic flow.The mechanism is capable of delegating and reasoning by introduction of the user field and three partial relations in permission,and then provides strong access control in SOA,based on RBAC(Role-Based Access Control) model.The mechanism is simple,secure and effective in practice and is suitable for extensive applications. |
| |
| Keywords: | permission management access control RBAC SOA |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
