论文部分内容阅读
为了满足信息化技术在大型企业规模化应用的安全性和方便性要求,在经典的ARBAC97模型基础上,结合传统访问控制模型RBAC的改进模型RDBAC的应用,提出了一套管理RDBAC模型的模型——ARDBAC,它最大的特点是引入部门作为管理域最小单位,取消管理继承性,实现分布式管理,规避管理风险。详细描述了其权限管理过程,讨论了其管理的域和管理继承性问题,并应用于实际信息系统中,阐述了其应用价值。
In order to meet the security and convenience requirements of application of large-scale information technology in large-scale enterprises, based on the classic ARBAC97 model, combined with the application of RDBAC, an improved model of traditional access control model RBAC, a model of managing RDBAC model is proposed - -ARDBAC, its greatest feature is the introduction of departments as the smallest unit of management domain, cancel the management of inheritance, to achieve distributed management, to avoid management risk. Described in detail its rights management process, discussed its management domain and management inheritance issues, and applied to the actual information system, described its value.