摘要
在分析了RBAC、TBAC等模型存在局限性的基础上,结合单点登录的高校综合信息管理系统的特点,提出了一种新的基于动态目录树、权限匹配码的权限管理模型,并在高校综合信息管理系统的安全管理中实现了基于动态目录树、权限匹配码的访问控制。实践结果表明,该模型能够有效地实现系统的安全管理和降低应用服务器用于权限管理的运行代价。
On the basis of analyzing the technology limit existing in the RBAC model, TBAC model and taking the characters ofauthority management in the synthetic information management system of college into consideration, a new authority management model based on dynamic TreeView and authority matching code is presented. And it has been realized in the security management of the synthetic information management system of college. It is shown by practice that this model can effectively realize the security management and reduce the working cost of authority management in the web application server greatly.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第16期3774-3777,共4页
Computer Engineering and Design
基金
四川省教育厅科研基金项目(07ZC058)