• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2014, Vol. 36 ›› Issue (09): 1697-1704.

• 论文 • 上一篇    下一篇

基于对象状态的工作流系统访问控制机制的研究

武凌,王浩   

  1. (安徽财经大学管理科学与工程学院,安徽 蚌埠 233030)
  • 收稿日期:2012-09-17 修回日期:2013-04-24 出版日期:2014-09-25 发布日期:2014-09-25
  • 基金资助:

    安徽省高等学校省级自然科学基金资助项目(KJ2012B001)

Research of workflow access control
mechanism based on object status   

WU Ling,WANG Hao   

  1. (School of Management Science and Engineering,Anhui University of Finance & Economics,Bengbu 233030,China)  
  • Received:2012-09-17 Revised:2013-04-24 Online:2014-09-25 Published:2014-09-25

摘要:

针对访问控制机制中仅考虑对象层次的不足,在基于任务和角色的访问控制模型中加入对象层次的访问控制,并考虑对象状态对使用者访问权限变化的影响,使访问控制的粒度精确到以个别对象状态为单位。在设计访问控制机制时,将不同状态下的访问规则从权限管理的架构中分离,通过这种方式可以使访问控制机制运用在不同工作流程中。系统实现时采用面向对象的设计模式,将此访问控制机制应用在具有多种素材的在线数字化博物馆内容审核流程上,通过内容管理以及访问控制机制的引入,确保数字化内容的正确性与适用性。

关键词: 对象状态, 工作流, 角色, 访问控制

Abstract:

To overcome the insufficiency of object level in access control mechanism, the access control mechanism of object level is integrated in the taskrolebased access control.This mechanism takes into account the effects of object status changes for user access permissions. Granularity of access control is accurate to express individual object status.When designing the access control mechanism,the access rules under different conditions separates from the access management structure. By this way, the accesscontrol mechanism can be used in different workflow processes.Objectoriented design patterns are used in the system design. Finally,the mechanism is applied onto the online authoring and publishing system of a multimedia digital museum to assure that the digital content is correct and appropriate.

Key words: object status;workflow;role;access control