摘要
随着分布式服务的发展,服务提供者一方面总是期望提供尽可能通用的服务,而另一方面却期望能够细致地区分每个用户可以调用的服务,现有的RBAC模型很难解决这种矛盾。论文在研究现有RBAC访问控制模型的基础上,提出了基于RBAC的分布式服务两级访问控制模型,该模型将访问控制分为服务级别和属性级别两级,通过属性级别的访问控制将一个通用服务根据用户不同细致地区分成多个服务,从而满足了上述需求。
With the distributed service development,the service providers always expect the general service as far as possible to be provided,but at the same time they expect that they can distinguish the service carefully according to a different user.The existing RBAC model is very difficuh to resolve this kind of contradiction.Through studying the existing RBAC model,we propose two level access control model of distributed service based on RBAC.This model will divide the access control into two level:the service level and the attribute level.The attribute level access control will divide a general service into many services according to the different user carefully.Thus this model has met the above need.
出处
《计算机工程与应用》
CSCD
北大核心
2006年第26期119-121,130,共4页
Computer Engineering and Applications
