• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2007, Vol. 29 ›› Issue (11): 78-80.

• 论文 • 上一篇    下一篇

MS SQL SERVER2000的角色存取控制策略

左翠华 卢正鼎 李瑞轩   

  • 出版日期:2007-11-01 发布日期:2010-05-30

  • Online:2007-11-01 Published:2010-05-30

摘要:

数据库的安全策略需要各种模型来表达,访问控制模型就是其中之一。基于角色的存取控制RBAC被公认为是对传统的自主访问控制和强制访问控制的革新及补充,并且是最有 发展潜力的存取控制策略,已成为当前数据库领域研究的热点之一。现代大型关系数据库系(RDBMS)均不同程度地支持RBAC,但不尽相同,各具特点。文中选择了RBAC的用户-角色分配、可分配权限、角色层次关系等几个重要的性能技术指标,对当前广泛使用的MSS SQL SERVER2000典型的础)BMS的RBAC特征进行了研究。

关键词: 基于角色的访问控制 角色层次关系 权限

Abstract:

It is necessary for the security strategy of databases to be expressed by different kinds of models and the access control model is one of them. Role-  based access control is publicly known as reform and complement for the traditional self-determination access control and compulsive access control. Moreover, it is recognized as the most potential access control strategy and is the hot topic in the current database field. RDBMS supports RBAC to differe nt extents with their own characteristics. This paper chooses several important capability technique indexes of RBAC, such as user-role distribution, pe  rmission distribution, and role hierarchy relationship. It studies the typical RBAC characteristics of RDBMS for the broadly-used MS SQL SERVER2000.

Key words: (RBAC, role hierarchy, permission)