| At present, Workflow has become be one of the important technology in the field of the enterprise office automation, e-commerce, electronic government affairs, etc. With the development of large-scale modern enterprises, the traditional workflow technology is difficult to adapt to the decentralized deployment information distribution of isomerization, running environment, complex re source access control management, it is difficult to prevent unauthorized users to fraud. For traditional workflow is low in distribution difference, initiative and parallelism, this article will apply Agent technology to the workflow access control, Use the interactivity, intelligent, initiative and autonomy of Agent to make the operation of the traditional workflow system be better in dynamic and flexibility. For resources management problems of access control, this paper proposed a role- task based multi Agent dynamic access control model, provides an effective method to prevent users from unauthorized fraud.Based on the task and role based access control(TRBAC) model, this paper introduced multi Agent technology, workflow historical information, task execution status, the task context and other related concepts, presents a new method of dynamic access control, improvement of separation of duties to verify t he static separation of duties. Improved separation of duties combined static separation duties, dynamic separation and the Workflow history information; Permissions associated with the task execution status. By excuted tasks and according to the task status, roles obtain the corresponding permissions, after the task execution status, immediately rec ycle their permissions. The proposed model kept many advantages of TRBAC model, through to the users, roles, tasks, task execution status, permissions, various types of Agent mapping relation and the improvement of separation of duties and dynamic authorization settings, effectively realized the dynamic workflow system authorization, least privilege and separation of duties of access control requirements, improved the security and flexibility of the system.This paper introduces organizational structure and operation mechanism of model. C learly expressed separation of duties, dynamic authorization process, function of the multi Agent and collaborative communication methods, as well as the model in the specific implementation, the main module and database. Finally, WADE platform is adopted to accomplish multi Agent intelligence processing system to verify multi Agent dynamic access control model. Verify the feasibility and validity of the model. |
PDF Full Text Request