东北大学学报(自然科学版)

东北大学学报(自然科学版) ›› 2006, Vol. 27 ›› Issue (2): 217-220.DOI: -

• 论著 • 上一篇    下一篇

基于RBAC的具有时空约束的工作流授权模型

徐洪学;郭秀英;刘永贤;   

  1. 东北大学机械工程与自动化学院;营口职业技术学院;东北大学机械工程与自动化学院 辽宁沈阳110004;辽宁营口115000;辽宁沈阳110004
  • 收稿日期:2013-06-23 修回日期:2013-06-23 出版日期:2006-02-15 发布日期:2013-06-23
  • 通讯作者: Xu, H.-X.
  • 作者简介:-
  • 基金资助:
    国家“十五”重大攻关课题项目(制造业信息化关键技术攻关及应用工程:2001BA201A14)

Temporarily-spatially constrained workflow authorization model (TSCWAM) based on RBAC

Xu, Hong-Xue (1); Guo, Xiu-Ying (2); Liu, Yong-Xian (1)   

  1. (1) School of Mechanical Engineering and Automation, Northeastern University, Shenyang 110004, China; (2) Yingkou Higher Vocational Technical Institute, Yingkou 115000, China
  • Received:2013-06-23 Revised:2013-06-23 Online:2006-02-15 Published:2013-06-23
  • Contact: Xu, H.-X.
  • About author:-
  • Supported by:
    -

RichHTML

0

PDF (PC)

720

摘要: 结合具体工作流系统实例,提出一个基于RBAC的具有时空约束的工作流授权模型TSCWAM.与传统的访问控制授权模型不同,该模型提出了时空权限的概念,表示基于RBAC的工作流授权不仅受时间约束,还受空间范围限制,即被授权者只能在某个时间段和空间范围内才能对某个任务执行某种操作,从而既可以保证组成工作流的任务只能被属于某个特定角色的用户执行,又可以保证在授权流与工作流同步的基础上,实现授权流与空间范围动态变化的相互协调.

关键词: RBAC, 访问控制, 时空权限, 工作流

Abstract: A temporarily-spatially constrained workflow authorization model (TSCWAM) based on role-based access control (RBAC) was proposed. Differing from the conventional access control authorization models based on subject-object pattern, the model offers a notion of temporal-spatial permission that the workflow authorization based on RBAC is constrained not only temporarily but also spatially, i.e. the authorized user is just permitted to operate a certain task within a certain time and space. Thus, the tasks which form a workflow can only be performed by a user who is assigned to play a special role in operation, and the user can make sure that the authorized flow is coordinated mutually with the spatially dynamic change on the basis of synchronization of both authorized flow and workflow.

中图分类号: