【摘要】 在基于角色访问控制模型的基础上,针对U型组织结构中信息系统的特点,提出一个扩展角色访问控制模型,新模型引入信息域和操作域的概念,对角色和权限进行扩展和形式化定义,使扩展RBAC模型对于信息系统的权限分配直观、容易理解、便于使用,能够灵活、高效地对系统进行权限访问控制,并采用客户端自主访问控制和服务器端审核的方式,增强访问控制安全。更多还原

【Abstract】 Based on the role-based access control model,focuses on the traits of information system in united organization structure,this paper proposes an extended roles access control model.The new model applys the concept of information-domain and operation-domain,and extends and formalized defines the roles and access control,so as to make the system assign permission more intuitionistic,understandable and easier to use.Meanwhile,the new model controls the permission access freely and efficiently,and enhances the security of access control by using the client discretionary access control and server authorization.更多还原