| As a part of IS (Information Security), also one of the standard security services established by ISO (International Standard Organization). Access Control is used to protect important resources, for instance, prohibits illegal user's access to the confidential resources, restricts legal users'operation in their permitted set of operation and prevents resources from damages due to carelessness. There are several different kind of Access Control, including RBAC (Role-Based Access Control), TBAC (Task-Based Access Control) and ECAC (Extended Capacity Access Control). However, among many Access Control technologies, models and methods developed, RBAC draws the most considerable attention.Firstly, an overview of RBAC, its development, motivations and important concepts will be given. After that, several latest and most well known models and the core concepts of them are discussed. Among them, ARBAC97's concept of administrative RBAC, ARBAC02's concept of organization structure and SARBAC's concept of administrative scope are the key points of introduction. Besides introduction, a comparison of them will also be given. Based on the above, a modified model named UARBAC (Upgraded Administrative Role-Based Access Control) will be introduced. In UARBAC, effort is made to combine the advantages of above models and the runtime constraint together. And then, the UARBAC is applied to an intranet multi-server file access control system. |
PDF Full Text Request