| 一种可代理的访问控制模型 |
| |
| 引用本文: | 李双,徐茂智.一种可代理的访问控制模型[J].北京工商大学学报(自然科学版),2007,25(4):75-79. |
| |
| 作者姓名: | 李双 徐茂智 |
| |
| 作者单位: | 1. 北京工商大学,数理系,北京,100037
2. 北京大学,数学科学院,北京,100871 |
| |
| 摘 要: | 基于角色的访问控制模型具有很多优越性,但当系统管理员和某一"角色"缺席时,其他角色无法完成该角色的权限,致使紧急任务无法完成.造成上述情况的原因是基于角色的访问控制的基本模型不支持拥有权限的主体的任意授权.为解决这一问题文章提出了一种可代理RBAC模型,文章详尽地给出了模型的定义,以及建立撤销代理角色的规则,具有现实的应用价值,并为实现代理角色的权限的自动授权提供了可能.
|
| 关 键 词: | 访问控制 角色 代理角色 权限 代理权限 |
| 文章编号: | 1671-1513(2007)04-0075-05 |
| 收稿时间: | 2007-06-13 |
A DELEGATION MODEL IN RBAC |
| |
| LI Shuang,XU Mao-zhi.A DELEGATION MODEL IN RBAC[J].Journal of Beijing Technology and Business University:Natural Science Edition,2007,25(4):75-79. |
| |
| Authors: | LI Shuang XU Mao-zhi |
| |
| Institution: | 1. Department of Mathematics and Physics, Beijing 100037, China ; 2. School of Mathematical Sciences, Technology and Business University, Beijing Peking University, Beijing 100871, China |
| |
| Abstract: | There are many predominance in RBAC model compared with other traditional Access Control models.However when the role needed to execute some actions is absent, the urgent task can't be completed in time.The reason is that the basic model of RBAC doesn't allow the subject to transfer his permission to others arbitrarily,In order to solve the problem,the paper submits one delegation model based on RBAC including definition and related rules.This delegation model is useful in the reality and provides assignment of permission automatically. |
| |
| Keywords: | access control role delegable role permission delegable permission |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
