【摘要】 本文通过对基于任务的访问控制模型的扩展,提出了一种基于活动和环境约束的访问控制模型。该模型可以用四元组{授权策略,授权约束定义,授权环境,授权事物对象}表示。文章用一阶谓词对该模型的访问控制约束规则进行了形式化描述,并讨论了该模型在业务流程管理系统中的实现方法。更多还原

【Abstract】 As an extension of the Task-Based Access Control (TBAC) model, an access control model based on activities and context constraints(ACBAC) is proposed. This model is characterized by a four-tuple {policy, constraint, context, authorization transaction unit}. The access control rule of the ACBAC model is formalized by the first order predicate logic. The realization method of the model in business process management systems is also discussed.更多还原