作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2008, Vol. 34 ›› Issue (21): 139-140,. doi: 10.3969/j.issn.1000-3428.2008.21.050

• 安全技术 • 上一篇    下一篇

基于角色的安全工作流模型

宋春燕1,徐建良1,李申华2   

  1. (1. 中国海洋大学信息科学与工程学院计算机科学系,青岛 266100;2. 山东大学密码技术与信息安全教育部重点实验室,济南 250100)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2008-11-05 发布日期:2008-11-05

Secure Workflow Model Based on Role

SONG Chun-yan1, XU Jian-liang1, LI Shen-hua2   

  1. (1. Department of Computer Science, College of Information Science and Engineering, Ocean University of China, Qingdao 266100; 2. Key Laboratory of Cryptologic Technology and Information Security, Ministry of Education, Shandong University, Jinan 250100)
  • Received:1900-01-01 Revised:1900-01-01 Online:2008-11-05 Published:2008-11-05

摘要: 将基于角色的访问控制模型RBAC96应用到工作流中,设计一个基于角色的安全工作流模型,给出该模型的形式化描述和图形表示。定义DcAC, EP, EPA, IP, IPA的概念,用于管理模型中的授权。与以往基于角色的工作流模型相比,着重处理文档、任务与角色三者之间的权限关系,加强对文档权限部分的管理。

关键词: 角色, 安全, 工作流

Abstract: This paper proposes a secure role-based workflow model, which combines the role-based access control RBAC96 with workflow. Concepts such as DcAC, EP, EPA, IP, IPA are proposed to be convenient for interpreting authorization management. The model is expressed by a formal description and a graph. Compared with the former role-based models, its security researches focus on dealing with the authorization relationships among roles, tasks and documents, can manage the authorization on documents better than them.

Key words: role, security, workflow

中图分类号: