关键词: Web服务 代理 代理实体 RBAC ARBAC

Abstract:

In Web services, the traditional role-based access control model cannot implement content-based and contextbased access control policies flexibly, h cannot meet the demands of Web Services agent＇s dynamic and temporary features and Web services＇ context and content sensitivity. We propose a role-and agent-based access control model （ARBAC）. In the ARBAC model, the access controoller of the Web services＇ agent will produce an agent entity which is used to replace the user（subject）. The agent entity is a temporary and fictitious subject whose permission is limited  by the permission of the user and whose life cycle is within one requisition.

Key words: Web services, agent, agent entity, RBAC, ARBAC