| Within the process of the computer network technology,the information security become a important issues for the development of the network.As a cornerstone of information security, Role-Based Access Control(RBAC) is regared as a important technology to protect information systems security and be accepted by all of us. RBAC is a preferable access control policy. Compared with traditional DAC and MAC models, Role-Based Access Control(RBAC) Model can provide better flexibility and scalability.In role-based access control systems, security officers handle assignments of users to roles. However, fully depending on this functionality may increase management problems in a large-scale, highly distributed environment. The emerging technology of delegation provides a means for implementing RBAC in a fully distributed environment with empowerment of individual users.Based on the analysis of the general models of PMI especially abstract control model and delegation,we draw some conclusions: Firstly,we gave a gelegation based on PMI. Secondly we presented some constraint assignments for delegatin and the method of decision on delegation ,then we researched the process of decision ,we also presented denotation of policy rules. Finally this dissertation... |
PDF Full Text Request