Agent Audit Role-based Permissions Model And Its Design,

With the rapid social development, information system has deeply penetrated into every field, which results in social and corporational dependence on the system. So system audit which enhances reliability, safety and effectiveness of information system, makes up the major basis of information, and incur more and more national and international attention.Because Role-Based Delegation is an important part of Access Control Mode, and becomes a main Access Control mechanism in Distribution Computation, the studies on Role-Based Delegation have been a popular project. A complete access control system is supposed to support role delegation and system audit. Consequently, this paper aims at setting up a new Role-based Delegation Audit Model (RBDAM) and making a research on its framework, and then achieving RBDAM's prototype.First of all, this paper introduces RBAC and analyses several typical role-based delegation models. Secondly, based on the researches on the current Role-based Delegation Models, a new role-based integrated delegation model (IRBDM) of user-to-user and role-to-role is presented. Thirdly, in order to enhance the security and credibility of role delegation model, the thesis presents Role-based Delegation Audit Model. Aiming to adapt itself to different application environment, this model includes three levels: RBDAMO, RBDAM1 and RBDAM2. The first level is the most basic role delegation audit model, the rest models increase functions of the delegation and audit gradually. Finally, in order to attest the effectiveness and usefulness of the delegation audit model, the paper, working on the object of RBDAM2, produces a standard designing thought and model of Role-based Delegation Audit Model on the premise that there is no relationship between this model's realizing mechanism and application project.There are several fresh innovations as following:1. Systematical researches on the characteristics, advantages and disadvantages, the common thing of RDBMO, RDM2000, PBDM.2. Presents a new role-based integrated delegation model (IRBDM) of user-to- user and role-to-role, and totality/partial role delegation, multiple step delegation, single step...