摘要
构建安全、高效和公平的企业系统资源的统一访问控制系统,是目前一个重要的研究方向。分析了面向服务的架构技术(SOA)、面向角色的访问控制(RBAC)技术、公钥基础设施PKI和权限管理基础设施PMI在安全管理方面的作用,并重点分析了欧共体PERMIS工程的优缺点,在此基础上把SOA和PKI/PMI很好的结合起来构建了访问控制子系统,克服了PERMIS工程的不足,实现了企业系统的安全、高效的访问控制功能,为企业系统的访问控制提供了一种参考方案。
It is an important research direction to build a safe, efficient and fair access control system for business system resources. This paper analyses the use of the service - oriented architecture (SOA) technology, role based on the access control (RBAC) technology, public key infrastructure PKI and privilege management infrastructure PMI in safety management , and analyses the advantages and disadvantages of the EC PERMIS . Then it builds access control subsystem in the base of integrating the SOA and PKI / PMI. It overcomes the deficiencies of the PER- MIS project, and has got the secure and efficient access control of enterprise system , which provides a reference scheme for the enterprise access control system.
出处
《贵州教育学院学报》
2009年第3期34-37,共4页
Journal of Guizhou Educational College(Social Science Edition)