Research on Improved RBAC Model and its Access Control Strategy
Role based access control (RBAC) is a technology that is attracting increasing attention, particularly for commercial application, because of its potential for reducing the complexity and cost of security administration in large networked application. Nevertheless, there are many deficiencies in the management of user, role and permission, as using the RBAC model in true applications. For instance, when the system gradually expand the scale, the assignment of the user and the assignment of the roles efficiency is rapidly decrease; the permissions transfer caused by the inheritance of the role, makes the contradictions between the number of role and the granularity of the permission be sharp gradually. In the light of the deficiency of traditional RBAC models access control mechanism, four improved mechanisms are proposed and the improved models access control policy is discussed.
RBAC access control information security.
Lei Shi Shouqian Sun Jun Yuan
Computer Sci. Tech. Dept. of Zhejiang University, Hangzhou, P. R.China Department of Automation, Tsinghua University, Beijing, P. R. China
国际会议
昆明
英文
1067-1071
2008-11-22(万方平台首次上网日期,不代表论文的发表时间)