| 基于角色的代理访问控制模型及其实现 |
| |
| 引用本文: | 郭晓凯,卫文学,黄海明.基于角色的代理访问控制模型及其实现[J].山东科技大学学报(自然科学版),2009,28(1):89-92. |
| |
| 作者姓名: | 郭晓凯 卫文学 黄海明 |
| |
| 作者单位: | 1. 山东科技大学,信息科学与工程学院,山东,青岛,266510
2. 肥城矿业集团公司,设计院,山东,泰安,271000 |
| |
| 摘 要: | 针对传统的基于角色的访问控制模型的不足,给出了一种基于角色的代理访问控制模型,将上下文、观察者和代理的概念引入到了访问控制中。该模型能够根据上下文环境的变化而动态地做出访问决策,访问控制检查也不需要放入业务逻辑实现的代码中,而是由观察者观察业务逻辑执行情况,当需要访问控制检查时通知代理主体,由代理主体做出访问控制决策。这种模型可以很好地在Spring AOP框架中实现。
|
| 关 键 词: | 访问控制 上下文 代理 面向方面编程 授权 |
Research on the Role-based Agent Access Control Model and Its Implementation |
| |
| GUO Xiao-kai,WEI Wen-xue,HUANG Hai-ming.Research on the Role-based Agent Access Control Model and Its Implementation[J].Journal of Shandong Univ of Sci and Technol: Nat Sci,2009,28(1):89-92. |
| |
| Authors: | GUO Xiao-kai WEI Wen-xue HUANG Hai-ming |
| |
| Institution: | 1.College of Information Science & Engineering;SUST;Qingdao;Shandong 266510;China;2.Institute of Design;Feicheng Mining Group Co.Ltd.;Taian;Shandong 271000;China |
| |
| Abstract: | This paper has analyzed the shortcoming of the traditional role-based access control(RBAC) model and given a new one called the role-based agent access control(RBAAC) model.In this model,some concepts of context,agent and observer are introduced.This model can make decisions of access control dynamically according to the change of context.The checking of access control can be made by agents.When the checking is needed,the observer will find it and inform the agent.The model can be well realized in the frame... |
| |
| Keywords: | access control context agent aspect oriented programming(AOP) authorization |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
