摘要
针对RBAC模型的普通角色继承所存在权限不能及时的授予与回收、没有包含明确的策略状态以及没有反映元素状态的改变等问题,给出了一个面向任务的RBAC扩展模型RBAC-T,该模型引入了任务概念并将任务划分成公有任务和私有任务,通过部分角色继承P-RH,控制了角色权限继承粒度,解决了传统RBAC角色继承中出现的继承问题,给出状态变换图及模型状态变化的描述,通过对状态的分析控制实现了权限的动态分配与回收.还描述了模型的实现原型和处理流程.
Aiming at the problems in Role-Based Access Control(RBAC) model such as granting and reclaiming of authorities of common role, not having distinctive policy state, and not reflecting the change of elements state, RBAC-T, the extended model for the task-oriented RBAC, was put forward. In this model the conception of task was introduced, group tasks were divided into public tasks and private tasks, and the granularity of role inheritance through partial role inheritance was introduced. States transition graphics and descriptions of states transition of the model dynamic allocation and reclaim of authorities were implemented by states analysis. The transaction procedure of the model and its prototype were provided.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2005年第8期34-36,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)