| 基于域的综合访问控制模型 | |
| 卢亚辉 ; 张力 ; 刘英博 ; LU Ya-hui ; ZHANG Li ; LIU Ying-bo | |
| 2010-06-09 ; 2010-06-09 | |
| 关键词 | 产品全生命周期管理系统 访问控制 授权 管理角色 管理域 product lifecycle management system,access control authorization administrative role administrative domain TP393.08 |
| 其他题名 | Domain-based integrated access control model |
| 中文摘要 | 首先分析了企业实施产品全生命周期管理对于访问控制方面的需求,然后按照层次化的方式分析了访问控制模型的特点,将访问控制模型分为访问检查、授权和管理3个方面,分析了现有访问控制模型在支持这些需求方面的不足。在此基础上,提出了基于域的综合访问控制模型。该模型能够支持基于用户、基于角色和基于任务的多种主体授权方式,以及基于类型、基于实例化对象、基于属性和基于对象生命周期的多种客体授权方式。通过在国产产品全生命周期软件系统中的实际应用,证明了该模型能够较好地满足产品全生命周期系统中访问控制的特定需求。; Specific access control requirements in Product Lifecycle Management (PLM) systems were analyzed firstly. Then, the access control framework was generally divided into three hierarchical components as access check, authorization and administration. Shortcomings of current access control models in supporting these requirements were analyzed. To overcome the drawbacks of these access control models, a Domain-based Integrated Access Control (DIAC) model was proposed. Each administrative role could set up authorization rules on several subjects (users, roles and tasks) and objects (types, instantiation objects and attributes) within its administrative domain. The implementation of the model in TiPLM system, and the application case in Xiamen Kinglong Co. showed that the DIAC model could flexibly meet the requirements in PLM system.; 国家973计划重点资助项目(2002CB312006); 国家863/CIMS主题资助项目(2003AA411022)~~ |
| 语种 | 中文 ; 中文 |
| 内容类型 | 期刊论文 |
| 源URL | [http://hdl.handle.net/123456789/56605]  |
| 专题 | 清华大学 |
| 推荐引用方式 GB/T 7714 | 卢亚辉,张力,刘英博,等. 基于域的综合访问控制模型[J],2010, 2010. |
| APA | 卢亚辉,张力,刘英博,LU Ya-hui,ZHANG Li,&LIU Ying-bo.(2010).基于域的综合访问控制模型.. |
| MLA | 卢亚辉,et al."基于域的综合访问控制模型".(2010). |
| 个性服务 |
| 查看访问统计 |
| 相关权益政策 |
| 暂无数据 |
| 收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论