摘要
基于角色的访问控制是一种高效安全的访问控制机制,但是传统的RBAC模型没有提出根据单位特征、功能特征和数据特征来细化控制角色指派的方法。本文结合RBAC模型思想和大型企业信息系统的实际需求对RBAC模型进行改进,在单位、功能、数据等维度对模型进行了细化,并给出了实例应用,有效地解决了大型企业信息系统的安全访问控制难以细化的问题。
Role-Based Access Control (R.BAC) is a kind of access control mechanism which is secure and high performance.But the traditional KBAC model does not give the method which based the character of deptement,function and data to control the role assignment.Combine with the idea of KBAC model and the requirement of large-scale enterprise information system,the article introduces a kind of fine grain RBAC model, which thinning the role assignment in the dimensionality of deptement,function and data. At last, this article give practical application of the model,and resolves effectively the question that secure access control difficult to thin in large-scale enterprise information system.
出处
《电脑知识与技术》
2006年第2期40-41,95,共3页
Computer Knowledge and Technology