| Access Control (AC) is one of the five standard security services established by International Standard Organization (ISO), which is an important mechanism of Information Security (IS). AC has showed its great advantages in many enterprises, organizations and departments during its use in past years.However, as time goes by, the traditional AC models, such as Discretionary Access Control (DAC) and Mandatory Access Control (MAC), no longer satisfy the newest requirements and standards of IS. As a result, ARBAC is becoming the important part of a secure and credible application system. It's of high significance that building a perfect model of ARBAC and designing a reasonable application framework based on an ARBAC Model. Firstly, the technology of AC is introduced in this thesis including its history, several representative models of Role-Based Access Control (RBAC) and a comparison of those models. After that, UARBAC model based on ARBAC is put forward, which tries to make use of several different concepts and put them together, including concept of organization (the ARBAC02 Modal), concept of extended role hierarchy (the SARBAC Modal) and concept of capacity. And then, in this thesis, much of effort has been directed to the construction of UARBAC model and its application in Intranet Monitoring System with reference to ISO 10181. The achievement of this research is that UARBAC model is designed and implemented in Intranet Monitoring System, which is supported by National 863 Project. It is shown that the applicability, the flexility and broad application outlook of the UARBAC model through the system. |
PDF Full Text Request