摘要
为了使基于角色的访问控制(RBAC)模型在权限体系中的实现程序简化,在比较分析访问控制三种主流技术——自主访问控制、强制访问控制、基于角色的访问控制的基础上,着重研究了基于角色访问控制的权限体系的模型,在基于关系数据库的权限体系的基础上,加入了用户组、菜单、菜单项等角色,提出了一套简化的基于RBAC的权限体系。最后,给出了基于RBAC模型权限体系的简化模型的实现类图,简化了权限系统中的认证和授权管理。
To simplify the realization procedures of the role based access control (RBAC) model in authority system, after comparing three prevalent access control technologies- discretionary access control (DAC), mandatory access control (MAC)and the rolebased access control,the RBAC authority system model is studied in detail. The authority system designs the concept model based on the relational database of the RBAC, adds the user group, menu, menu items and so on, a simplified authority system based on the RBAC is given. Finally, gives the simplified model graphs based on the authority system of the RBAC model so that authentication and authorization man- agement are simplified.
出处
《计算机技术与发展》
2009年第9期154-156,163,共4页
Computer Technology and Development
基金
国家教育部科技计划项目(教技司[2005]105116)