| The information is closely related to the production and life in the information age,and the importance of the security problem is becoming more and more important.Access control technology as an important part of information security,has penetrated into all fields of information security,the traditional access control technology is Discretionary Access Control(DAC)and Mandatory Access Control(MAC),but these two kinds of control methods is obviously insufficient,authorization management of DAC is not conducive to implement universal access MAC control,authorization management.The traditional access control and limit access control flexibility and control ability,introduces the concept of the role in access control,the establishment of "mapping user role resource",improve the access control flexibility and control ability of access control,the access control model has been the rapid development and wide application based on.In this paper,based on the detailed study of the role based access control model,I have mainly completed the following work:(1)Research on access control model,especially for several kinds of role based access control model.The characteristics,key technologies and constraint principles of this kind of model are studied.(2)Research on the role based access control model after the introduction of the concept of user groups,and discusses the definition of user groups and the relationship between user groups and roles.(3)Based on the role based access control model,the analysis,design and implementation of a Yii2 framework based on the RBAC rights management system. |
PDF Full Text Request