摘要
权限管理是应用软件的重要组成部分,它关系到应用系统安全性和可靠性。当前的软件管理者和用户的多样性为权限管理提出了挑战。传统粗粒度的权限管理系统权限粒度较粗,较难适用于用户复杂多样的管理系统,故提出一种基于“位示权限”和“权限矩阵”的细粒度权限管理的方法(Flex-RBAC),实现了相应的权限分配算法,减小了权限分配的粒度,增加了权限管理的灵活性。提出的细粒度、配置灵活的权限管理方法及设计的原型系统,为应用软件的细粒度权限管理提出一种切实可行的方法。Flex-RBAC方法的创新点在于权限管理的粒度细小、配置灵活、算法实现简单,具有较高的通用性。
Permission management as an important part of application software is critical to the security and reliability of the software system,which is challenged by diversity of software managers and users.The traditional coarse-grained permission management system is difficult to apply to the management system with complex and diverse users.Therefore,a flexible role-based access control(Flex-RBAC)method based on bit map for permission and permission matrix is proposed,which can realize the corresponding permission assignment algorithm,reduce the granularity of permission distribution,and increase the flexibility of permission management.A permission management method with fine granularity and flexible configuration,and its prototype system are proposed,which provides a feasible method for fine-grained permission management of application software.The Flex-RBAC method has the innovation points of fine granularity and flexible configuration of permission management,easy algorithm implementation,and high universality.
作者
王博
郝羽
WANG Bo;HAO Yu(School of Computer Science and Technology,Xi’an University of Posts and Telecommunications,Xi’an 710121,China;Shaanxi Key Laboratory of Network Data Intelligent Processing,Xi’an University of Posts and Telecommunications,Xi’an 710121,China;School of Information Science and Technology,Northwest University,Xi’an 710127,China)
出处
《现代电子技术》
北大核心
2019年第11期153-157,共5页
Modern Electronics Technique
基金
陕西省科技厅工业攻关项目(2016GY-123):基于MDA的自动代码生成的设计与实现
国家自然科学基金项目(61272286):基于感知控制论的移动设备用户界面建模方法及支持工具研究~~
关键词
Flex.RBAC
细粒度
权限管理
角色
位示权限
权限矩阵
flexible role-based access control
fine grit
permission management
role
bit map for permission
permission matrix
