基于RBAC的数据权限扩展设计与实现
Design and Implementation of RBAC Model Extended with Data Permission
目前大多数基于Web的企业应用系统的权限控制采用的是RBAC(基于角色的访问控制)模型。权限控制可以分为功能权限和数据权限。RBAC模型能很好的解决功能权限的问题和简单的数据权限问题,但随着企业应用系统的日益庞大和复杂,数据权限的需求也变得很复杂,RBAC便不能胜任了。根据基于Web的企业应用系统的特点,本文对RBAC模型的进行了数据权限的扩展,给出了一个设计模型和实现,使其具有更大的灵活性和实用性。
RBAC (Role-Based Access Control) model used in most web-based enterprise application system. Access control can be divided into function permission and data permission. RBAC model was a good solution to the problem of function permission and simple data permission. As enterprise applications become increasingly large and complex, the demand for data permission has become very complex, RBAC cannot meet the requirements .Follow the characteristic of web-based enterprise application system, we extend RBAC model with data permission. A design model and implementation was given to make RBAC more flexibility and practicality.
黄志勇、凌咏红
计算技术、计算机技术
权限控制RBAC数据权限
access controlRBACdata permission
黄志勇,凌咏红.基于RBAC的数据权限扩展设计与实现[EB/OL].(2011-01-14)[2025-08-18].http://www.paper.edu.cn/releasepaper/content/201101-728.点此复制
评论