摘要
主要介绍在访问控制领域中基于角色访问控制模型的需求、发展和应用,并提出了基于角色访问控制模型数据库实现模型和API实现模型.基于角色访问控制模型通过角色继承实现角色结构化分层,反映现实组织的授权和责任,静态责任分离或者动态责任分离实现了责任分离,解决利益冲突,防止用于超越权限.这种模型实现了灵活的授权机制,便于分级管理,通过最小特权,减少网络实施风险.详细介绍并讨论基于角色控制的数据库模型和API模型的实现方法.
This paper mainly introduces the requirement of role-base access control model in the access control field, its development and application. It puts forward the implementation models of RBAC database and API. With RBAC model, implementation of hierarchy of role structures is realized by role inheritance, reflecting the authority and reliability of real organizations. Separation of static or dynamic liability realizes the separation of liability, solving the problem of benefit conflict and preventing right excess. This model makes the authorization more flexible, management at different levels simpler, and risk in the implementation of networks less with minimized authority. Detailed discussion is given regarding the implementation of models of RBAC database and API.
出处
《西安文理学院学报(自然科学版)》
2005年第4期57-60,共4页
Journal of Xi’an University(Natural Science Edition)
