| With the development and popularization of workflow technology, the security problem becomes more and more important. The performance of business process needs numbers of users to cooperate and share sensitive information and recourses. Therefore, the research of access control model becomes the focus of security mechanism in workflow area and has great significance.The paper advances T-RBAC (access control model based on task and role) combining with the conventional RAC and TAC in research of access control model. It establishes a security workflow framework based on T-RBAC. It also illustrates the specific implementation and application in detail.The main improvements of this paper include the following four parts.One, this paper classifies the task and utilizes different inheritance manner to realize the flexible relation of role hierarchy. Two, this paper realizes the authorization based on weighted role, it analyses the consistency and arithmetic of authorization in detail. Three, this paper advances dynamic authorization based on weighted time constrain of task. Four, this paper implements a security workflow framework based on T-RBAC. It applies the framework to validate the practicability and reliability.The paper applies the framework to production management system of enterprise, it introduces the management of workflow and analyses the security capability of framework. |
PDF Full Text Request