| 基于授权步数和角色差度的转授权模型 |
| |
| 引用本文: | 钟卫,舒坚,杨丰玉,刘琳岚.基于授权步数和角色差度的转授权模型[J].计算机工程,2010,36(1):136-138. |
| |
| 作者姓名: | 钟卫 舒坚 杨丰玉 刘琳岚 |
| |
| 作者单位: | 南昌航空大学计算机学院,南昌,330063 |
| |
| 摘 要: | 转授权技术能解决分布式环境下的用户授权问题,但在多步转授过程中可能引发循环授权和权限扩散。研究任务-角色访问控制(TRBAC)模型,提出基于授权步数和角色差度的工作流转授权(DR-TRBAC)模型,根据同一任务的转授关系构建转授权树,通过限定授权步数和遍历转授权树解决循环授权问题,设置转授用户间最大角色差度防止权限的扩散。应用实例证明了DR-TRBAC模型的实用性。
|
| 关 键 词: | 转授权模型 授权步数 角色差度 |
| 修稿时间: | |
Delegation Model Based on Delegation Depth and Role Range |
| |
| ZHONG Wei,SHU Jian,YANG Feng-yu,LIU Lin-lan.Delegation Model Based on Delegation Depth and Role Range[J].Computer Engineering,2010,36(1):136-138. |
| |
| Authors: | ZHONG Wei SHU Jian YANG Feng-yu LIU Lin-lan |
| |
| Affiliation: | (School of Computer, Nanchang Hangkong University, Nanchang 330063) |
| |
| Abstract: | The delegation technology can solve the authorization problem of users in distributed environment, which makes the permission management flexible. However, it is possible to cause the issues of cycle authorization and permission diffusion in the process of multi-step delegation. On the basis of T-RBAC, the paper proposes a DR-TRBAC model based on delegation depth and role range. It creates delegation tree according to delegation relationship of one task. The cycle authorization problem is solved by limiting delegation depth. The permission diffusion is controlled by setting the maximum of role range between users. The feasibility of DR-TRBAC is proved through an application. |
| |
| Keywords: | delegation model delegation depth role range |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
|
