摘要： 在基于角色的访问控制(RBAC)系统中，用户承担的角色由管理员指定，对一个大型系统，这样的用户角色指派方式既繁琐且易出错。该文建立基于属性与安全上下文约束的用户角色自动指派模型，给出用户角色自动指派算法，实现用户角色指派的自动化，保证指派后系统的灵活性与安全性，为RBAC模型在大型系统中的应用创造条件。

关键词: 用户角色指派, 约束, 属性, 支配关系, 安全上下文

Abstract: The roles of user are assigned by administrators in Role-based Access Control(RBAC) system. This method is complicated and fallible in a large system, so an automatic User-Role Assignment(URA) model is proposed based on attribute and security context constraints, and an Automatic URA(AURA) algorithm is presented, which realizes the model of AURA. It ensures flexibleness and security of systems, and provides convenience for application of RBAC in large systems.

Key words: User-Role Assignment(URA), constraint, attribute, dominating relation, security context

中图分类号: 

• N945