• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2006, Vol. 28 ›› Issue (8): 26-29.

• 论文 • 上一篇    下一篇

基于活动和环境约束的访问控制模型

张国军 吴飞跃 朱海平   

  • 出版日期:2006-08-01 发布日期:2010-05-20

  • Online:2006-08-01 Published:2010-05-20

摘要:

本文通过对基于任务的访问控制模型的扩展,提出了一种基于活动和环境约束的访问控制模型。该模型可以用四元组{授权策略,授权约束定义,授权环境,授权事物对象}表 示。文章用一阶谓词对该模型的访问控制约束规则进行了形式化描述,并讨论了该模型在业务流程管理系统中的实现方法。

关键词: 访问控制模型 一阶谓词 业务流程管理

Abstract:

As an extension of the Task-Based Access Control (TBAC) model, an access control model based on activities and context constraints(ACBAC) is propo sed. This model is characterized by a four-tuple { policy, constraint, context, authorization transaction unit}. The access control rule of the ACBAC model is formalized by the first order predicate logic. The realization method of the model in business process management systems is also discussed.

Key words: access control model, first order predicate logic, business process management