摘要
针对跨国跨地区的供应链和多公司集团企业,在角色访问控制(Role-Based Access Control,RBAC)的基础上,加入组织和角色组,提出三维权限控制模块.该体系遵循RBAC96和ARBAC97的模式,控制用户Web访问资源和业务执行的最小权限集合.本文采用Java语言开发基于MS SQL Server 2012数据库的权限系统模块,实现权限体系的可复用和可扩展.快速应对企业业务变化.
For transnational,trans-regional supply chain and the group enterprise,on the basis of Role-Based Access Control(RBAC),adding the organization and role group,three-dimensional permissions control module is proposed,which follows RBAC96 and ARBAC97 mode and controls users minimum permission set of access to web resources and business implementation.Permissions system module is developed using Java language based on MS SQL Server 2012 database and can be reusable and extended.Therefor,it can response business change rapidly.
作者
张荣荣
甘清华
ZHANG Rong-Rong;GAN Qing-Hua(College of Software,Henan Normal University,Xinxiang 453007,China;R&D,Ecvision Co.Ltd.,Shenzhen 518057,China)
出处
《计算机系统应用》
2020年第11期250-254,共5页
Computer Systems & Applications
关键词
三维权限控制
最小权限集合
组织
控制单元
角色组
three-dimensional access control
minimum permission set
organization
control unit
role group