| 多维授权对象RBAC模型的设计与实现 |
| |
| 引用本文: | 周彬,刘连忠. 多维授权对象RBAC模型的设计与实现[J]. 兰州理工大学学报, 2005, 31(2): 77-80 |
| |
| 作者姓名: | 周彬 刘连忠 |
| |
| 作者单位: | 北京航空航天大学,计算机学院,北京,100083;北京航空航天大学,计算机学院,北京,100083 |
| |
| 基金项目: | 中组部863项目(2002AA113040) |
| |
| 摘 要: | 指出授权对象的定义与维护是RBAC访问控制系统中重要的组成部分,采用传统基于角色访问控制模型难以满足对复杂授权对象的分类管理、授权与访问控制的要求.针对访问控制客体的复杂性,提出了一种分类定义与管理系统授权对象的机制,并在对原访问控制模型进行扩充和改进的基础上提出了基于角色的多维授权对象访问控制模型(MPO RBAC).
|
| 关 键 词: | 多维授权对象 基于角色的访问控制 数据库应用 EJB 信息管理系统 |
| 文章编号: | 1000-5889(2005)02-0077-04 |
| 修稿时间: | 2004-02-13 |
Design and implementation of multidimensional permission object RBAC model |
| |
| ZHOU Bin,LIU Lian-zhong. Design and implementation of multidimensional permission object RBAC model[J]. Journal of Lanzhou University of Technology, 2005, 31(2): 77-80 |
| |
| Authors: | ZHOU Bin LIU Lian-zhong |
| |
| Abstract: | Definition and maintenance of permission objects is important component in RBAC access control system.When traditional role-based access control model is employed,it is difficult to satisfy the requirement of classification management,permission,and access control of complex permission object.Aiming at complexity of object in access control system,a mechanism of defining and managing multidimensional permission objects is presented.Some improvement is made in original RBAC model and a new RBAC model named MPO-RBAC with multidimensional permission objects is presented. |
| |
| Keywords: | multidimensional permission object role-based access control database application EJB information management system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
