摘要
教研管理系统包含的部门及工作人员的类别较多,保证数据安全是整个系统设计的关键部分,本系统采用基于角色的访问控制(RBAC)策略可以很好地满足整个系统对数据的安全性和系统维护方便性的要求.RBAC策略通过引入角色的概念,使用户不直接操作功能权限,从而降低了权限管理的复杂性,而且用户和功能数量可以根据需要增加,各级管理员可以按需分配角色,满足了系统的可扩展性要求.最后对该权限模块进行了安全性分析,结果表明,在安全性能上能够满足两个著名的安全原则:职责分离原则和最小特权原则,具有很好的动态适应性.
Because of various kinds of departments and staff in teaching management system, ensuring data security is the key part of the whole system design. Role-based access control (RBAC) strategy is used to satisfy the data security and maintenance convenience in the whole system. By introducing the con- cept of role, the users do not operate function authority directly so as to reduce the complexity of authority management. The amount of users and functions may increase according to their needs, and administrators of different levels can assign their own roles, which meet the system's scalability requirements. At last the security of the model is analyzed. The result shows that RBAC in this model supports two security princi- ples such as least privilege and separation of duty, and it has good dynamic adoption.
出处
《河北北方学院学报(自然科学版)》
2010年第4期57-62,共6页
Journal of Hebei North University:Natural Science Edition