摘要
在RBAC模型的基础上,提出一种基于岗位和角色的两级访问控制模型——PRBAC。该模型将岗位从角色的一个属性中独立抽象出来,使角色和岗位共同决定主体对客体的访问权限。实践证明,该模型可以降低授权操作难度和工作量,保证整个授权管理体制的条理性和一致性,使得整个授权过程流程清晰,易于实现。
On the basis of RBAC model,this paper put forward a new model PRBAC,which was a two-level model based on the post and role.It made the post independent from an attribute of the role.Post and role could jointly determine the access authority of subject to the object.In practically,it can reduce the workload and the difficulty of authorization operation,and insuring security and consistency of the authority system.Contemporarily,it makes the authority process clear and easy to rea-lity.
出处
《计算机应用研究》
CSCD
北大核心
2009年第3期1084-1085,共2页
Application Research of Computers
基金
国家自然科学基金资助项目(70271045)
辽宁省自然科学基金资助项目(2051066)
关键词
角色
访问控制
岗位
权限
role
access control
post
authority
