Abstract:

Access control is an important security technology to protect the information system. In this paper, we review the existing access control models and propose the PDMRBAC model .This model is designed to solve the problems such as inefficiency and difficult management, which exist in the PDM system and are caused by huge amount of data, finegrained control of data and too many user levels. We use user group hierarchy instead of role hierarchy to decrease permission configuration data and introduce permission hierarchy to manage data permission. Under the application in an enterprise PDM system, we also propose an access control algorithm based on permission bits to solve the conflict caused by negative permissions.

Key words: PDM； RBAC； access control