关键词: 角色 访问控制 多层 基于角色的访问控制

Abstract:

RBAC is a widely accepted and implemented model nowadays. An appealing possibility is to use roles to manage roles; the widely accepted model is ARBAC97. However, the original ARBAC97 cannot implement complex and multilayer applications. Thus, this paper proposes a muhilayer model for role-based administration of roles （MARBAC）. Definitions and descriptions of the model are given. Within the muhilayer framework, the ranges that are not encapsulatedd can be divided into different layers, in which ranges should be encapsulated. The MARBAC model is able to implement complex and muhilayer applications

Key words: role, access control, multilayer;role-based access control