论文部分内容阅读
针对传统的基于角色访问控制(role-based access control,RBAC)模型在大规模企业应用中存在的不足,提出一种基于自治域的RBAC改进模型(autonomy domain-based RBAC,AD-RBAC)。该模型引入“自治域”描述企业组织结构,将组分为管理组和普通组,增强组的表达能力,参照组织结构域描述模型构建组层次结构和组类型,简单、直观地实现多级用户授权管理。在专家信息服务网格中,使用AD-RBAC实现网格节点基于虚拟域的服务和数据授权访问,证明了模型的可行性和有效性。
Aiming at the shortcomings of the traditional role-based access control (RBAC) model in large-scale enterprise applications, an autonomy domain-based RBAC (AD-RBAC) model is proposed. This model introduces “autonomy domain ” to describe the organizational structure of enterprises, divides the groups into management groups and common groups, enhances the expression ability of the groups, constructs group hierarchy and group types with reference to the organization domain description model, Level user authorization management. In the expert information service grid, AD-RBAC is used to implement grid-based virtual domain-based service and data authorization access, which proves the feasibility and effectiveness of the model.