| Access control model is one of the research focuses currently. Discretionary access control and mandatory access control are often applied to military safety field. Role is introduced to separate user and privilege in role-based access control model, but RBAC can't directly control the permission for a sequence of events. Task-based access control is presented based on the model of tasks, manages dynamically privilege, but TBAC is lack of management of role hierarchy.Through analyzing existing access control model, taking task and role as two basic features, this paper proposes the task-role based dual access control model T-RBDAC. On the basis of task classification, it can apply to workflow and non-workflow tasks. It solves the problem of role hierarchy inheritance according to different task attributes. The formalized description of T-RBDAC is presented and the model is implemented in the project CRM, which proves its practicability and validity.This thesis has 6 chapters. Chapter 1 mainly expatiates on the background of the study of this thesis and the main content of this thesis. Chapter 2 describes the basis of the classification under workflow. Chapters 3 studies the existing access control models and makes a comparison among them, Chapter 4 proposes task-role based dual access control model on the basis of task classifications. Chapter 5 analyses the requirements of the key business process and validates the application of T-RBDAC. In the end it summarizes this paper and addresses the direction of future studies.
|
PDF Full Text Request