摘要
介绍了基于角色访问控制模型(RBAC),给出了RBAC96中用户、权限、角色、会话集及角色的层次、授权等之间的关系。基于RBAC96设计并实现了协同办公系统,给出了该系统的功能模块、技术路线和实现方法。重点论述了本系统实现过程中的权限列表和角色列表的创建方法、协同办公中的访问控制特点及实现方法、权限控制子系统应用层开发流程等关键问题,提出了权限控制子系统服务器端三层B/S结构设计方法,解决了协同办公中的访问控制问题。实现协同办公系统所采用的方法和技术路线具有通用性。
Introduces a role - based access control model(RBAC). It introduces relation about user, permission, role, conversation , levels and accredit of role in RBAC96. Proposes design and implementation of OA based on it. Then give the systern' s functional modules, technology path and method. And discuss some key issuses of the access control: the permissions list and the role of list creation, access control in the coordination office, the application- layer development process of access control subsystem. At last, provide an access control sub-system server- side B/S structural design. It is commonality about the methods and techniques used in this paper.
出处
《计算机技术与发展》
2010年第3期230-233,共4页
Computer Technology and Development
基金
军队重点项目(2007ky003).获全军三等奖
关键词
基于角色的访问控制
协同办公
角色
权限
role-hazed access control
cooperation office
role
permission
