计算机工程 ›› 2012, Vol. 38 ›› Issue (11): 30-33.doi: 10.3969/j.issn.1000-3428.2012.11.010

• 软件技术与数据库 • 上一篇    下一篇

基于角色的跨组织工作流存取控制机制

武 凌,王 浩,王松涛,张 海   

  1. (安徽财经大学管理科学与工程学院,安徽 蚌埠 233030)
  • 收稿日期:2011-09-22 出版日期:2012-06-05 发布日期:2012-06-05
  • 作者简介:武 凌(1977-),男,讲师、硕士,主研方向:网络管理;信息系统;王 浩,实验师;王松涛,助教;张 海,高级工程师
  • 基金项目:
    安徽省高等学校自然科学基金资助项目(KJ2011Z009, KJ2012B001)

Inter-organization Workflow Access Control Mechanism Based on Role

WU Ling, WANG Hao, WANG Song-tao, ZHANG Hai   

  1. (College of Management Science and Engineering, Anhui University of Finance & Economics, Bengbu 233030, China)
  • Received:2011-09-22 Online:2012-06-05 Published:2012-06-05

摘要: 针对基于角色的存取控制模型不适合跨组织环境的问题,扩展组织内部以角色为基础的存取控制,采用一种角色分数机制,并在水平式跨组织工作流程环境中的使用者、角色及工作之间加上更严谨的限制条件,让使用者在虚拟角色集合中,选择一个适当的角色进入跨组织工作流程内执行工作。实验结果证明,该扩展简单有效,企业在进行跨组织工作流程时更具公平性及安全性。

关键词: 组织内, 跨组织, 水平式跨组织, 工作流, 角色, 存取控制

Abstract: The Role-based Access Control(RBAC) is widely applied because of its advantages. For the unsuitability of RBAC in inter-organization environment, the main propose of this research is to extend the characteristics of RBAC on intra-organization workflow. The research puts forward a role score mechanism, and appends more strict constraint to users, roles and activities of horizontal inter-organization workflow. Besides, this research makes sure that a user chooses an appropriate role from virtual role set to execute activity in inter-organization workflow. Proved by the experiment, the extension is simple and effective, and it makes the enterprises more equitable and securable in inter-organization workflow.

Key words: intra-organization, inter-organization, horizontal inter-organization, workflow, role, access control

中图分类号: