| RB-RBAC模型的研究与改进 |
| |
| 引用本文: | 周晓军,蒋兴浩,孙锬锋.RB-RBAC模型的研究与改进[J].信息安全与通信保密,2010(4):100-102. |
| |
| 作者姓名: | 周晓军 蒋兴浩 孙锬锋 |
| |
| 作者单位: | 上海交通大学信息安全工程学院,上海,200240 |
| |
| 摘 要: | 在RB—RBAC模型的基础上提出了动态角色-权限分配的概念,克服了其角色-权限分配过于复杂的问题。此外,还结合多元判决的思想对其进行了改进,增强了其授权规则的灵活性,给出了改进后模型的基本要素及其相互关系,描述了其访问控制流程。改进后的模型进一步降低了权限管理工作的复杂性,具有更好的灵活性,在资源众多且访问控制策略复杂的系统中可以取得较好的效果。
|
| 关 键 词: | 访问控制 RB—RBAC模型 属性 角色-权限分配 |
Research and Improvement of RB-RBAC |
| |
| ZHOU Xiao-jun,JIANG Xing-hao,SUN Tan-feng.Research and Improvement of RB-RBAC[J].China Information Security,2010(4):100-102. |
| |
| Authors: | ZHOU Xiao-jun JIANG Xing-hao SUN Tan-feng |
| |
| Affiliation: | ZHOU Xiao-jun,JIANG Xing-hao,SUN Tan-feng (School of Information Security Engineering,Shanghai Jiaotong University,Shanghai 200240,China) |
| |
| Abstract: | After analyzing the RB-RBAC model, this paper proposes the concept of dynamic role-permission assignment, thus to reduce the complexity in assigning permissions to roles. Multi-decision is also used to improve the RB-RBAC model and increase the flexibility of the authorization rules. Essential elements and their mutual relations are given, and the access control process is also described. |
| |
| Keywords: | access control RB-RBAC attribute role-permission assignment |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
