摘要
针对RBAC96模型簇中角色私有权限处理存在的不足,本文提出把角色权限分为私有权限和公有权限;并且,在角色权限继承时,保证了角色的私有权限不被高层次的角色继承,高级角色只能继承低级角色的公有权限部分。针对RBAC96簇模型的普通角色继承所存在权限不能及时授予与回收的问题,给出了一种面向任务的RBAC策略方案,从而使得RBAC模型更好地发挥其优势。
Aiming at the shortcomings of role-permission inheritance privilege and extreme privilege in the relationship of role-permission assignment of the RBAC96 models, this paper suggests the role permissions he divided into private permissions and public ones;and in role-permission inheritance, the privatizing permission of a role will not he inherited by highlevel roles, which can only inherit its public permissions. Meanwhile, aiming at the problems in the RBAC96 models such as granting and reclaiming the authorities of roles, the conception of task is added to RBAC. Therefore, the RBAC model can exert its superiority better.
出处
《计算机工程与科学》
CSCD
2007年第4期36-37,50,共3页
Computer Engineering & Science
