| 基于T&RBAC访问控制模型的改进方法研究 |
| |
| 引用本文: | 赵静.基于T&RBAC访问控制模型的改进方法研究[J].燕山大学学报,2010,34(4):331-335. |
| |
| 作者姓名: | 赵静 |
| |
| 作者单位: | 燕山大学里仁学院,河北秦皇岛,066004 |
| |
| 基金项目: | 秦皇岛市科学技术与发展计划资助项目 |
| |
| 摘 要: | 针对传统的基于任务-角色的访问控制模型无法为不同数据对象分配不同权限以及角色继承方法不够灵活的缺点,对其中比较流行的TRBAC模型提出了改进方法和模型的形式化定义。其基本思想是:将数据对象从任务-权限模型中分离出来作为权限分配的独立部分,分别与用户和角色建立联系;同时普通用户可以将任务委托给下层用户,从而减轻系统管理员权限分配的难度,为普通用户分配权限提供了更强的灵活性。
|
| 关 键 词: | 角色 权限 基于任务和角色的访问控制 数据对象 访问控制 |
Research on improved access control model based on T&RBAC |
| |
| ZHAO Jing.Research on improved access control model based on T&RBAC[J].Journal of Yanshan University,2010,34(4):331-335. |
| |
| Authors: | ZHAO Jing |
| |
| Institution: | ZHAO Jing (Liren College of Yanshan University,Qinhuangdao,Hebei 066004,China) |
| |
| Abstract: | According to the shortcomings that the data objects are not involved and the permission distribution mechanism is not flexible in the traditional task-role-based access control methods, several improved suggestions are proposed to the popular T& RBAC model, and an improved model is defined formally. The basic idea of the improved model is that the data object is distributed as an independent permission part which is connected with users and roles separately, and the common user could authorize his task perm... |
| |
| Keywords: | role permission T&RBAC data object access control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
