摘要
网络应用服务作为一种新型的服务理念,在信息化水平不是很高的机械行业有着极具潜力的发展前景,然而访问控制的处理仍然是制约其发展的一个瓶颈.本文结合在企业级CAPP系统THWebCAPP中的研究与实践,从软控制方面入手,引入基于角色的权限控制策略,结合对基于角色访问控制及相关知识的理解,考虑网络访问特点,提出访问控制模型-自适应基于角色访问控制模型,随后逐步讨论基于该模型实现对网络应用服务的访问控制.
As a new service methodology,network application ser-vices(NAS) have a good potential future in the mechanical industry which infonnadon management is in low level. But the management of access control lag behind NAS level becomes the bottleneck in the de velopment and implement of NAS. From the point of view of soft-con trol, role-based access control( RBAC) is introduced. Exploiting RBAC content and correlative knowledge, considering the characteristics ofnetwork access, a access control model named adaptive role-based ac cess control model(ARBAC)is proposed based on the development and practice of an enterprise level CAPP system-THWebCAPP. Because ARBAC is self-governed and self-adaptive, access control system can be developed independently, plug and play. Based on this model, the ac cess control system for network application services is implemented step by step. The data models, functions and implementation technology of its modules are described in detail. Finally the new research directions are discussed.
出处
《成组技术与生产现代化》
2002年第1期16-21,共6页
Group Technology & Production Modernization