| 应用角色访问控制的工作流动态授权模型 |
| |
| 引用本文: | 裘炅,谭建荣,张树有,马晨华. 应用角色访问控制的工作流动态授权模型[J]. 计算机辅助设计与图形学学报, 2004, 16(7): 992-998 |
| |
| 作者姓名: | 裘炅 谭建荣 张树有 马晨华 |
| |
| 作者单位: | 浙江大学CAD&CG国家重点实验室,杭州,310027;浙江大学CAD&CG国家重点实验室,杭州,310027;浙江大学CAD&CG国家重点实验室,杭州,310027;浙江大学CAD&CG国家重点实验室,杭州,310027 |
| |
| 基金项目: | 国家“八六三”高技术研究发展计划 ( 2 0 0 1AA412 0 10 )资助 |
| |
| 摘 要: | 形式化地描述了角色、用户、权限、任务单元、授权策略、授权约束等实体及其相互间的关系,提出将授权约束分为需求角色约束、需求用户约束、拒绝角色约束及拒绝用户约束,并在此基础上建立了授权约束的冲突检测规则.实现了授权流与工作流的同步,并通过授权约束的冲突检测确保了工作流的有效执行.文中模型具有全面性与实用性较强的特点.
|
| 关 键 词: | 基于角色访问控制 工作流 动态授权 授权约束 授权约束冲突检测 |
Workflow Dynamic Authorization Model with Role-Based Access Control |
| |
| Qiu Jiong Tan Jianrong Zhang Shuyou Ma Chenhua. Workflow Dynamic Authorization Model with Role-Based Access Control[J]. Journal of Computer-Aided Design & Computer Graphics, 2004, 16(7): 992-998 |
| |
| Authors: | Qiu Jiong Tan Jianrong Zhang Shuyou Ma Chenhua |
| |
| Abstract: | The model formally describes the key elements of access control such as role, user, privilege, task unit, authorization strategy, authorization constraint and the relationship between these elements We identify the following four types of authorization constraints: require role constraints, require user constraints, deny role constraints and deny user constraints, then provide constraint consistency checking rules upon them In this model, authorization flow is synchronized with workflow and the workflow can be efficiently executed through the constraint consistency checking rules The main advantage of the model is its comprehensiveness, flexibility and practicability |
| |
| Keywords: | role based access control workflow dynamic authorization authorization constraint constraint consistency checking |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
