摘要
针对CMS(内容管理系统)的特点,在基于角色的权限访问控制的基础上,分析CMS中的访问主体与客体,涉及到的访问权限以及约束属性,提出一个带有附加主体、客体约束属性和约束机制的权限访问控制算法。该算法通过适用用户范围、信息状态、用户信用、用户级别四个方面对访问进行约束,使拥有同一角色的不同用户对信息资源的访问表现出各自不同的访问控制特征,从而,减少角色的数量,提高CMS中权限分配和访问控制的灵活性与安全性。
This Paper, According to the characteristic of CMS (Content Manage System), on the basis of Role - Based Access Control Models, analyses the access subject and object, permission and Constraints attribute involved in CMS, presents a permission access control algorithm which has additional subject and object constraints attribute and constraints mechanism. The algorithm restrains access by user range, information status, user credit and user class, makes the access of the different users having the same role show the different access control teatures, which reduces the quantity of roles and improves the flexibility and security of permission assignment and access cotrol in CMS.
出处
《计算技术与自动化》
2008年第1期100-103,共4页
Computing Technology and Automation
关键词
基于角色的权限访问控制
约束属性
约束机制
CMS
Role - based access control model
constraints attribute
constraints mechanism
CMS