摘要
对传统RBAC访问控制模型进行扩展,提出了基于导航树页面的RBAC模型,有效避免了传统RBAC模型应用到B/S系统时的角色和权限冗余。根据大多数电子政务系统对用户与角色数据的读取操作较更新操作频繁的特点,选择LDAP技术存储用户与角色数据,并且完成了数据存储设计。根据XML文件的存储功能以及动态加载导航树控件的特点,实现了基于XML文件权限访问策略的设计。此扩展模型是一种通用的动态加载导航树页面访问控制模型,为开发与设计此类用户访问控制模型的人提供借鉴。
This author extends the traditional RBAC access control model and proposes the RBAC model based on the navigation tree page witch effectively avoid the roles and permissions redundant when traditional RBAC model applied to the B/S system. According to the read operation of most E-government systems on the users and roles data is frequently than the update operation, the author select the LDAP service to store user and role data, and completed the design of data storage. Based on the XML file storage function, as well as the characteristic of dynamic loading navigation tree control, this paper realized the permissions access policy design based on XML file. This extended model is a general access control model is used to dynamic loading navigation tree page, provides a reference to the people developed and designed such user access control model.
出处
《电子设计工程》
2013年第3期50-53,共4页
Electronic Design Engineering
