本文已被:浏览 1295次 下载 2444次
Received:December 22, 2014 Revised:January 22, 2015
Received:December 22, 2014 Revised:January 22, 2015
中文摘要: 传统的访问控制模型采用手动的授权方式, 应用在目前混合型组织企业中, 造成权限授权复杂、准确度低. 因此, 提出一种基于用户-角色-任务的多约束访问控制模型(C-URTBAC), 该模型采用用户分级管理、权限在主体和客体间的传播性思想, 实现了半自动化的授权方式, 提高授权效率和准确度; 同时细化了约束分类, 实现了细粒度化的权限管理. 最后将该模型引用到某汽车零部件公司的PLM系统中, 验证了该模型的实用性.
Abstract:The manual way of the traditional access control model caused complex access authorization and low accuracy in the hybrid organization enterprise. And the model of C-URTBAC was put forward. The model adopted the idea of the level-to-level management of users and transmission of permissions in the subject and object. It could realize semi-automatic way of authorization, so as to improve the efficiency and accuracy of authorization. And it refined the constraint classification, realizing fine-grained permissions management. Finally the model was introduced in the PLM system of some auto parts company, verifying the practicability of the model.
文章编号: 中图分类号: 文献标志码:
基金项目:武汉理工大学自主创新研究基金(135204009)
引用文本:
姚璐,盛步云.基于用户-角色-任务的多约束访问控制模型.计算机系统应用,2015,24(8):257-262
YAO Lu,SHENG Bu-Yun.C-URTBAC Model in the Permission Management.COMPUTER SYSTEMS APPLICATIONS,2015,24(8):257-262
姚璐,盛步云.基于用户-角色-任务的多约束访问控制模型.计算机系统应用,2015,24(8):257-262
YAO Lu,SHENG Bu-Yun.C-URTBAC Model in the Permission Management.COMPUTER SYSTEMS APPLICATIONS,2015,24(8):257-262