| Along with the information and business management system of enterprise becomes larger, the problems of safely access control is more and more important. In the access control mechanism, Traditional access control methods cannot satisfy the needs of enterprises today. A new access control mechanism technology, RBAC (Role-Based Access Control), which based on roles, is appeared .RBAC implements logic separation between roles and access permissions, With the help of roles as main body, users could be access to the resources by roles . This technology greatly decreases the complexity of authorized management and provides a better management environment to managers.This thesis firstly introduces three strategies of access control: Mandatory Access Control (MAC), Discretionary Access Control (DAC) and Role-Based Access Control (RBAC). It emphasizes on the concept, advantage and disadvantage of RBAC. Followed combine the net management project UEMC of Xian Datang telecom Ltd. , introduce the design and implement of users'permissions management subsystem of UEMC(Union Equipment Management Center) by users , roles , permissions ,allocation of users and roles and allocation of roles and permissions which belong to RBAC technology ,and the effect is very good .Through the design and practice of this system, it indicates that the access control technology which based on roles has more advantages such as good security and strict access control in the application of big enterprise information management system and great application value . |
PDF Full Text Request