摘要
在基于角色的访问控制RBAC模型中,通过角色将用户和权限相联系,极大地降低了授权管理的复杂性,是一种灵活有效的安全措施。本文提出了一个适用于J2EE领域的RBAC权限管理框架。通过使用软件设计模式和面向方面的编程方法,将通用的权限管理放在框架内实现,而将特殊易变的权限管理以面向方面编程的方法实现,实现了强有力的可扩展性和易维护性。
By means of roles, the access control model of role-based access control links an user with his permissions, which greatly reduces the complexity and cost of authorization management.This paper presents a RBAC framework which can be used for the domain of J2EE. The framework which uses the design patterns of software and the method of aspect-oriented programming shows strong expansibility and maintainability.
出处
《计算机工程与科学》
CSCD
2007年第6期109-112,共4页
Computer Engineering & Science
关键词
RBAC
设计模式
面向方面
RBAC
design patterns
aspect-oriented programming