关键词: 基于角色的访问控制 任务 私有权限 角色层次关系

Abstract:

Aiming at the shortcomings of role-permission inheritance privilege and extreme privilege in the relationship of role-permission assignment of the RBA C96 models, this paper suggests the role permissions he divided into private permissions and public ones;and in role-permission inheritance, the privati  zing permission of a role will not he inherited by highlevel roles, which can only inherit its public permissions. Meanwhile, aiming at the problems in the RBAC96 models such as granting and reclaiming the authorities of roles, the conception of task is added to RBAC. Therefore, the RBAC model can exertits superiority better.

Key words: RBAC;task;private permission, role hierarchy