| 基于树型角色的访问控制策略及其实现 |
| |
| 引用本文: | 曾明,陈立定.基于树型角色的访问控制策略及其实现[J].华南理工大学学报(自然科学版),2004,32(9):13-16. |
| |
| 作者姓名: | 曾明 陈立定 |
| |
| 作者单位: | 华南理工大学,自动化科学与工程学院,广东,广州,510640 |
| |
| 基金项目: | 亚洲开发银行专项基金资助项目 (A0 30 2 0 8) |
| |
| 摘 要: | 对于工作职能耦合度高、业务呈交叉状的企业,传统的基于用户或角色的访问控制(RBAC)策略已难以实现信息系统的权限管理.文中结合RBAC的基本思想,提出了一种分层的树型角色访问控制(TRBAC)模型,并在应用程序层实现了基于角色的权限管理方案,实践表明,TRBAC简化了用户、角色和许可三者之间的配置规则,方便了系统的授权管理.
|
| 关 键 词: | 树型角色 访问控制 权限管理 数据库应用系统 |
| 文章编号: | 1000-565X(2004)09-0013-04 |
| 修稿时间: | 2004年1月2日 |
A Tree Role-based Access Control Strategy and Its Implementation |
| |
| Zeng Ming Chen Li-ding.A Tree Role-based Access Control Strategy and Its Implementation[J].Journal of South China University of Technology(Natural Science Edition),2004,32(9):13-16. |
| |
| Authors: | Zeng Ming Chen Li-ding |
| |
| Abstract: | For the enterprises characterized by high-coupling jobs and crossing businesses, it is difficult to implement the administration of information system privilege by utilizing the traditional access control strategies based on user or role. In this paper, according to the basic theory of the RBAC (Role-based Access Control), a multi-layered TRBAC (Tree Role-based Access Control) model was presented and a role-based privilege administration scheme was implemented in the application layer. The practical example indicates that the TRBAC simplifies the configuration rules of user, role and permission, and makes the privilege management more convenient. |
| |
| Keywords: | tree role access control privilege management database application system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
