摘要: 针对工作流管理系统动态授权的特性,在基于角色的访问控制(RBAC)模型基础上,提出一种权限约束支持的RBAC模型,利用Datalog逻辑语言描述约束策略,借助Datalog推理机实现一个“任务角色”分配的授权算法,解决工作流管理系统动态授权约束的问题。
关键词:
授权约束,
基于角色的访问控制,
工作流,
Datalog逻辑语言
Abstract: To satisfy dynamic authorization of WorkFlow Management System(WFMS), this paper proposes a Role-Based Access Control(RBAC) model that supports authorization constraint. In this model, authorization constraint model for WFMS is specified by Datalog logical language and an authorization algorithm is implemented using Datalog’s decision, making mechanisms. WFMS’s dynamic constrained authorization problem is solved with the method.
Key words:
authorization constraint,
Role-Based Access Control(RBAC),
workflow,
Datalog logical language
中图分类号:
单徐梅;虞慧群.
基于RBAC的工作流管理系统授权约束方法
[J]. 计算机工程, 2010, 36(4): 152-154.
SHAN Xu-mei; YU Hui-qun. Authorization Constraint Method in Workflow Management Systems Based on RBAC[J]. Computer Engineering, 2010, 36(4): 152-154.