节点文献

基于角色的权限管理访问控制系统平台研究与实践

Research and Application of the System of Privilege Management Platform Based RBAC

【作者】 李兰崇

【导师】 马义忠; 孙勋;

【作者基本信息】 兰州大学 , 计算机技术, 2009, 硕士

【摘要】 在信息技术高速发展的当今社会,随着互联网的飞速发展,各种信息管理系统如雨后春笋般地不断涌现,为了维护信息管理系统的安全及网络安全,权限管理访问控制系统扮演着举足轻重的角色。构建强健的权限管理访问控制系统,保证管理信息系统的安全性是十分重要的,权限管理访问控制系统是管理信息系统中可代码重用性最高的模块之一。但几乎每个单位都有自己的权限管理系统,都要在这方面投入相当的人力、财力,为此我们有了构建统一的、通用的权限管理访问控制模型并赋予实践的念头。本文首先分析已有的基于角色的RBAC四种模型,RBAC0、RBAC1、RBAC2、RBAC3的现状及实施问题;总结其优缺点并对其进行改良,提出了改良的E-RBAC模型,并从需求分析、模型架构、模型实施方法等方面对模型进行了详细阐述,并给出了模型实施图;文中还对模型的设计从设计任务、设计约定、对象设计、数据库设计、功能设计、测试设计等方面进行了详细阐述;最后还对模型实施、关键算法、进行了概括阐述,对本系统的特点及使用前景进行了概括总结。

【Abstract】 In the current society with information technology being developed rapidly, with the fast progress of Internet, big amount of different kinds of information management systems keep emerging. In the area of assuring the safety of the information management systems and the network, RBAC (Role-based access control) system plays an important role. It’ s critical to construct a robust permission management access control system to make sure the safety of the management information system security. In the meantime, permission management system is one of the modules which code could be reused to the best degree. However, the current situation is that almost every unit has its own permission management system and invest considerable human and financial resources to it. Hence it dawns on us that we should build a unified, universal permission management model and subsequently put it into practice. This paper is based on the analysis of the status and implementation issues about the role of four RBAC models - RBAC0, RBAC1, RBAC2, RBAC3, summing up their strengths and weaknesses and making improvements to them by proposing new E-RBAC model; It also gives detailed description for the model in the aspects of needs analysis, model structure, and model implementation methods, etc. It proposes the implementation plans as well. Furthermore, it elaborates the model of the design tasks from the design, design agreement, object design, database design, functional design, and testing design aspects, . etc. Finally, the paper briefly explains the way of the implementation of the model and the key algorithm; also it summarizes the features of this system and its prospect in use.

【关键词】 RBAC部门用户角色权限
【Key words】 RBACDepartmentUserRolePermission
  • 【网络出版投稿人】 兰州大学
  • 【网络出版年期】2009年 12期
  • 【分类号】TP393.08
  • 【被引频次】7
  • 【下载频次】307
节点文献中: