Research of Extended RBAC Model on Permission Control in Web Information System
According to the eharacteristics of WEB management information system。a reasonable division has been made between the representation la3’er and the business layer to further define the relation of permission.page and permission-operation.the extended model ERBAC based on RBAC(Role-Based Access ControI modell has been put forward to against the shortcoming of the traditionaI RBAC in WEB information system.The main jdea of ERBAC is to jntroduce a new concept of“business actionwhich iS made up by a series of menus,pages,and business operations.It subdivides access permission to different page URL.and operation SO that enhancing granularity of permission configure access contro has been separated from the representation layer and business Iayer of the WEB Information system,the centralized management of access controI has been realized to solve the traditionaI troublesome pages and logic eontrol and has been applied in the actual system with Aspect-Oriented Programming(AOP) technology.
component RBAC ERBAC Web information system permission AOP
LI LiQing YU Rong LU Hai LI XuDong
Institute of Computer Application. China Academy of Engineering Physics Mianyang Sichuan, China Institute of Applied Electronics. China Academy of Engineering Physics Mianyang Sichuan, China
国际会议
西安
英文
359-362
2011-05-13(万方平台首次上网日期,不代表论文的发表时间)