摘要
论述并扩充了基于角色的访问权限控制 (RBAC)模型 ,提出了一套适用于ERP系统的权限控制应用模型 ,在此基础上运用面向对象分析与设计的思想 ,定义了功能对象、功能对象的授权属性、授权属性的级别、系统角色等对象 ,对ERP系统的授权粒度进行了细致的划分 ,从而能够描述复杂的安全策略 ,并且有效地实现权限管理。在HZ ERP实际开发与实施过程中 ,证明了该模型的优越性。
In this paper, we discuss and improve the role- ba sed access control model and put forward a set of access control model for ERP s ystem. By using the object-oriented analysis and object oriented design method, we define sorts of function objects, authorization properties of function objec t, levels of authorization property, system roles, etc. Thus, the ERP system hav e reasonable authorization granularity and be able to describe complicated secur ity strategy. The model has been proved to be useful in our development and impl ementation of the HZ-ERP system.
出处
《机械科学与技术》
CSCD
北大核心
2004年第9期1025-1029,共5页
Mechanical Science and Technology for Aerospace Engineering