摘要
整个企业范围的统一认证是企业信息化应用发展到今天的迫切要求,套用传统的访问控制方法不能满足此需求。该文提出企业统一访问控制系统的设计应该从研究企业行为入手;并在企业行为研究的基础上设计了一种基于企业行为树、角色化的访问控制方法,使得企业访问控制主体的计算复杂性由常规方法的O(n)降为O(1)。此外该系统很好地支持企业管理柔性化,保障用户权限规则的实施。
Unified authorization is an urgent requirement of today's enterprises. but it's incapable to be solved with normal access control methods. In this paper,it's proposed tha design of such system should start with research on enter prise actions, and a new access control model based on enterprise action tree,with the feature of roled user management. is designed, Its complicacy of the main part is reduced to O (1) from O (n) of normal AC method.This new methodolgy supports flexible enterprise management and ensures carrying out the rules about user rights.
出处
《计算机工程与应用》
CSCD
北大核心
2000年第6期6-8,24,共4页
Computer Engineering and Applications
基金
国家"八六三"高科技计划基金!ZD-06
关键词
统一认证
企业
访问控制系统
计算机
unified authorization. access control, Enterprise Action Tree, role
