作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2009, Vol. 35 ›› Issue (24): 165-167. doi: 10.3969/j.issn.1000-3428.2009.24.054

• 安全技术 • 上一篇    下一篇

扩展RBAC模型及其在ERP系统中的应用

于小兵,郭顺生,杨明忠   

  1. (武汉理工大学机电工程学院湖北省数字制造重点实验室,武汉 430070)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2009-12-20 发布日期:2009-12-20

Extended RBAC Model and Its Application in ERP System

YU Xiao-bing, GUO Shun-sheng, YANG Ming-zhong   

  1. (Hubei Digital Manufacturing Key Laboratory, School of Mechanic and Electronic Engineering, Wuhan University of Technology, Wuhan 430070)
  • Received:1900-01-01 Revised:1900-01-01 Online:2009-12-20 Published:2009-12-20

摘要: 基于Core RBAC模型,提出扩展RBAC(基于角色访问控制)模型。该模型细化了客体集、操作集,提出了组别的概念,并对权限进行三维约束,实现了面向应用的RBAC体系结构,增强了系统的安全性和易维护性。结合企业信息化的典型代表——ERP系统,对扩展RBAC模型的具体实施进行分析。企业应用结果表明,该模型适用于企业信息化建设。

关键词: 基于角色访问控制, 客体集, 企业资源计划

Abstract: This paper presents an extended Role-Based Access Controls(RBAC) model based on Core RBAC model. The model discusses object sets and operation sets in detail, established groups. It carries out restrictions on power in three dimensions and realized application-oriented architecture. It enhances security and maintenance. The model is applied to Enterprise Resourse Planning(ERP) system. It is the typical representative of enterprise information system. Application result in enterprise shows that the extended model is totally suitable to it.

Key words: Role-Based Access Controls(RBAC), object sets, Enterprise Resourse Planning(ERP)

中图分类号: