| RBAC和FBAC的适用条件与集成 |
| |
| 引用本文: | 潘德锋,彭霞,吴信才. RBAC和FBAC的适用条件与集成[J]. 计算机工程, 2007, 33(19): 147-149 |
| |
| 作者姓名: | 潘德锋 彭霞 吴信才 |
| |
| 作者单位: | 华北电力大学计算机科学系,保定,071000;北京大学遥感与地理信息系统研究所,北京,100871;中国地质大学信息工程学院,武汉,430074 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 用集合论的方法分析了模型选取的4个决定因素:需要授权的用户数量,功能权限集的基数,角色的权限变化情况,用户的角色变化情况。对RBAC和FBAC的适用情况进行了划分。论证了在复杂的大型系统中,综合采用多种访问控制模型,对权限进行分割合并,区分出公共权限和专门权限,并引入多级授权机制,才能够克服单一模型的不足。
|
| 关 键 词: | 存取控制 RBAC FBAC |
| 文章编号: | 1000-3428(2007)10-0147-03 |
| 修稿时间: | 2006-11-16 |
Suitable Conditions and Integration of RBAC and FBAC |
| |
| PAN De-feng,PENG Xia,WU Xin-cai. Suitable Conditions and Integration of RBAC and FBAC[J]. Computer Engineering, 2007, 33(19): 147-149 |
| |
| Authors: | PAN De-feng PENG Xia WU Xin-cai |
| |
| Affiliation: | 1.Department of Computer Science,North China Electric Power University,Baoding 071000;2.Institute of Remote Sensing and GIS,Peking University,Beijing 100871;3.School of Information Engineering,China University of Geoscience,Wuhan 430074 |
| |
| Abstract: | This paper analyzes the 4 factors that determine which model should be chosen with the method of set: the quantity of users, the radix of function set, the change of role’s permissions, the change of user’s roles. It partitions the different conditions that are suitable for RBAC(role-based access control) model or FBAC(function-based access control) model. This paper demonstrates that it is necessary and feasible to adopt different models in complex large system. In this kind of system, it can deal with two methods: cut apart and combine the permissions; use the mechanism of multistage assignment. |
| |
| Keywords: | access control(AC) role-based access control(RBAC) function-based access control(FBAC) |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载免费的PDF全文 |
|
