摘要
ERP系统可实现对企业的管理 ,随着企业的规模扩大 ,职责分工的细化 ,易造成责任不明 ,产生管理的困难 ,权限问题已成为影响系统安全性的重要问题。基于角色的访问控制 (RBAC)强调用户的权限不是由用户名而是由用户在组织中的角色决定的 ,通过角色间接的访问系统资源。文章研究了RBAC的体系架构 ,通过角色的桥梁作用实现了用户与权限的对应关系 ,保证了权限配置的灵活性和安全性要求 ;并通过与数据库的紧密结合 ,结合佛山某企业应用实际 ,实现了用户权限实时的灵活动态配置。
ERP system completed enterprise management. Because enterprise was enlarged and the function subsection was appeared, it brought duty blur and produced management difficulty. User-privilege is crucial for the security in the system. Role-based Accss Control emphasized the privilege was decided by the role of users in system, not decided by the name of users. The role plays a bridge and embodies the corresponding relation between the users and privilege. This paper realizes the dynamic configuration of the user-privileges by making full use of the database based on access control.
出处
《组合机床与自动化加工技术》
2005年第3期86-87,共2页
Modular Machine Tool & Automatic Manufacturing Technique
基金
国家重点科技攻关项目 (2 0 0 3BA1 0 3C)
