摘要
基于任务访问控制模型(TBAC)与传统的访问控制模型不同,它不是将访问许可与角色或用户联系起来,而是将许可与任务联系。本文在基于任务的访问控制对象建模的基础上,为使不同的异质的工作流系统下的任务可以安全地迁移,授权的紧密性得到保证,引入了授权单元的概念,并在工作流系统中讨论了授权单元的应用,将授权与工作流紧密结合,强调上下文联系,最后就实际解决TBAC模型中存在的授权原子性和事件触发等问题讨论了解决方案。
Task -based access control is different from the classic access control m odels,modeling of authorization in tasks is as well as the monitoring and management of au thorization processing and life -cycles as tasks progress.This paper injects authorization unit to ensur e the ideas of united task and pre-sents a basic concept of new authoriz ation model.In this paper,how to support united tasks and how to run tasks based event is researched.
出处
《通信技术》
2002年第11X期95-97,共3页
Communications Technology
关键词
访问控制
授权
TBAC
授权单元
工作流
access control,authorization,TBA C,authorization unit,workflow
