摘要
从综合信息管理系统以及软件系统集成的需求出发,分析了NIST RBAC模型的局限性,在此基础上对其模型进行扩充,提出ERBAC模型。该模型适用于多种客体且具体客体不确定的情况。文章还给出了ERBAC模型的具体定义和应用实例。
This paper analyses the requirements of comprehensive information management system and software integration. It proposes an extended model named ERBAC, which is based on the analysis of the shortcomings of NIST RBAC model. The extended model is applicable to the case of having multiple and unknown objects. And the definition and an instance of the ERBAC model are described.
出处
《计算机工程》
CAS
CSCD
北大核心
2008年第11期29-31,34,共4页
Computer Engineering
基金
国家“863”计划基金资助项目(2006AA01Z147)
国家自然科学基金资助项目(60673041)
关键词
细粒度
多客体
访问控制
综合信息系统
fine grain
multi-object
access control
comprehensive information management system