摘要
门户能够有效地实现异构信息之间的集成与协作,并为用户提供可定制、统一且遵循规范的访问服务。然而,由于门户所具有的这些不同于普通Web应用的特性,也使得传统访问控制模型无法在门户中直接使用。提出了一种面向门户系统的访问控制模型P-RBAC。P-RBAC扩展了传统的基于角色访问控制模型,并根据行为状态进一步分为静态模型和动态模型。P-RBAC给出了静态模型和动态模型上的行为规则,提出了具体的动态权限指派和角色组织策略,从而有效地解决了门户的访问控制问题。实际的应用案例证明,P-RBAC模型能够适用于门户的访问控制,并较之传统访问控制模型更高效可行。
Portals facilitate users to easily access information by integrating heterogeneous applications,services and data resources in a consistent way However,traditional access control models are not applicable to portal systems because of portal systems' particularities shown above.This paper proposes an improved access control model for portal systems:P-RBAC.The model is based on RBAC by extending it both on concepts and on behaviors.The static and dynamic models of P-RBAC are described,and then a detailed discussion of the rules and policies on both models is given.The application of P-RBAC in real environment proves that it can be a possible and efficient solution for the access control in portal systems.
出处
《计算机工程与应用》
CSCD
北大核心
2007年第12期119-123,共5页
Computer Engineering and Applications
基金
国家自然科学基金(the National Natural Science Foundation of China under Grant No.60573126)
国家重点基础研究发展规划(973)(the National Grand Fundamental Research 973 Program of China under Grant No.2002CB312005)。