摘要
传统的RBAC模型对角色授权管理是静态的。但是现代软件系统要求对角色的管理具有动态性。引入角色环境函数和角色约束规则的概念,提出了一处扩展角色存取控制模型ERBAC(ExpandedRole-BasedAccessControl)扩展了RBAC的动态性,讨论了新的角色关系、授权规则和形式化描述,给出了实现ERBAC的基本框架。
But most of the existing RBAC models are static,and the dynamic management for roles is required by morden software systems.With the notions,role environment function and role constraint rule used,a new model,extended role-based access control(ERBAC) is proposed,the dynamic characteristic of RBAC in special-time is extended,the new relationships among roles,the grant rules and formal descriptions are defined and discussed. Finally,a basic framework implementing ERBAC model is given.
出处
《微电子学与计算机》
CSCD
北大核心
2006年第12期135-137,140,共4页
Microelectronics & Computer
关键词
用户
角色
存取对象
环境函数
约束规则
User, Role, Permission, Access object, Environment function, Constraint rule
