关键词: 基于角色的访问控制 角色层次关系 权限

Abstract:

It is necessary for the security strategy of databases to be expressed by different kinds of models and the access control model is one of them. Role-  based access control is publicly known as reform and complement for the traditional self-determination access control and compulsive access control. Moreover, it is recognized as the most potential access control strategy and is the hot topic in the current database field. RDBMS supports RBAC to differe nt extents with their own characteristics. This paper chooses several important capability technique indexes of RBAC, such as user-role distribution, pe  rmission distribution, and role hierarchy relationship. It studies the typical RBAC characteristics of RDBMS for the broadly-used MS SQL SERVER2000.

Key words: （RBAC, role hierarchy, permission）