本文已被:浏览 1909次 下载 3502次
Received:July 12, 2009 Revised:September 18, 2009
Received:July 12, 2009 Revised:September 18, 2009
中文摘要: 传统内容管理系统中,对用户直接授权的方法虽然简单,但不易管理;基于角色的访问控制方法(RBAC)增强了权限管理的灵活性和易扩展性,却可能造成权限泄露;给出ECMSAC模型,在RBAC的基础上,引入可实施的最小特权原则,减少了权限泄露的可能,提高了CMS的安全性。
Abstract:The method of granting users directly in traditional content management system is simple to implement, whereas it's difficult to manage. The method of RBAC enhances the flexibility and scalability of privileges management. However, it may lead to the leak of privileges. To slove the problems, this paper proposes a ECMSAC model, based on RBAC. It brings in applicable Least Privilege Theorem, reduces the likelihood of privilege's leak and boosts the security of CMS.
文章编号: 中图分类号: 文献标志码:
基金项目:
| Author Name | Affiliation |
| LIU Yi-Tian | 国网电力科学研究院 江苏 南京 210003 |
| KONG Zhen |
| Author Name | Affiliation |
| LIU Yi-Tian | 国网电力科学研究院 江苏 南京 210003 |
| KONG Zhen |
引用文本:
刘一田,孔震.企业CMS中RBAC模型的研究与改进实现.计算机系统应用,2010,19(4):77-80
LIU Yi-Tian,KONG Zhen.Research and Improved Implementation of RBAC Model on Enterprise Content Management System.COMPUTER SYSTEMS APPLICATIONS,2010,19(4):77-80
刘一田,孔震.企业CMS中RBAC模型的研究与改进实现.计算机系统应用,2010,19(4):77-80
LIU Yi-Tian,KONG Zhen.Research and Improved Implementation of RBAC Model on Enterprise Content Management System.COMPUTER SYSTEMS APPLICATIONS,2010,19(4):77-80
