摘要
面对业务系统的规模不断扩大,传统的RBAC(Role-Based Access Control)权限控制变得越来越复杂,不仅增加了企业运维难度,也越来越容易因为权限分配不合理而出现安全事故。为解决以上问题,在对RBAC层次模型研究的基础上,进一步将权限治理分为可靠性、复杂性、权限修正策略三部分,从不同维度进行权限管理。在RBAC的基础上,进一步将RBAC1、RBAC2、RBAC3引入治理策略中。将RBAC分层与可靠性计算、复杂性计算、权限修正策略相结合,设计实现了基于RBAC的权限控制模型。实验表明,该模型有效地降低了大规模权限管理的复杂度,随着系统的运行,稳定性也不断提升。
Facing the expanding scale of business system,the traditional RBAC authority control is becoming more and more complex,which not only increases the difficulty of enterprise operation and maintenance,but also is more and more prone to safety accidents because of unreasonable authority allocation.In order to solve the above problems,based on the research of RBAC hierarchical model,the authority governance is further divided into three parts:reliability,complexity and authority revision strategy,and authority management is carried out from different dimensions.On the basis of RBAC,RBAC1,RBAC2 and RBAC3 were further introduced into the governance strategy.A RBAC-based authority control model was designed and implemented by combining RBAC layering with reliability calculation,complexity calculation and privilege revision strategy.The experiments show that the model effectively reduces the complexity of large-scale authority management and improves the stability with the operation of the system.
作者
杨福军
丁涛
付眸
张培红
周铸
Yang Fujun;Ding Tao;Fu Mou;Zhang Peihong;Zhou Zhu(Computational Aerodynamics Institute,China Aerodynamics Research and Development Center,Mianyang 621000,Sichuan,China)
出处
《计算机应用与软件》
北大核心
2022年第1期30-38,59,共10页
Computer Applications and Software
基金
国家数值风洞工程项目。
