摘要
对传统的基于角色的访问控制模型进行了分析,结合电子文档安全管理的特点,提出了一种新的基于角色的访问控制模型。该模型对典型RBAC模型进行了扩展,在角色与操作目标之间引入了文档操作集概念,通过对文档进行封装处理来简化权限分配工作。在给出了扩展RBAC模型的形式化定义后,对模型进行了分析和研究,最后介绍了该模型在文档管理系统中的应用。
On the basis of analyzing the conventional role- based access control model and bonding the characteristic of the electronic docu- ment management, presents a new role- based access control model,which extends the traditional role- based access control model. The concept of document - operate - sets(D- OS) connecting the role and the object is presented. This model seals documents in order to simplify the privilege assignment. After producing the formalized definition of the expanded RBAC model, has carried on the analysis and the research to the model. Finally introduces this model in documents management system application.
出处
《计算机技术与发展》
2007年第3期210-213,共4页
Computer Technology and Development
基金
国家自然基金项目(60072014)
省自然基金项目(Y2003G01)
