面向虚拟企业协同设计的分层动态安全访问控制

2010 2nd IEEE International Conference on Information Management and Engineering Pub Date : 2010-04-16 DOI:10.1109/ICIME.2010.5477976

Fu Cuiyu, Li Aiping, Xu Liyun

{"title":"面向虚拟企业协同设计的分层动态安全访问控制","authors":"Fu Cuiyu, Li Aiping, Xu Liyun","doi":"10.1109/ICIME.2010.5477976","DOIUrl":null,"url":null,"abstract":"This paper proposes a hierarchical and dynamic security access control we call RTBAC (role and task-based access control) model for cooperation in a virtual enterprise. A multi-level privilege model is developed to simplify the process of permission definition and assignment for enriching the expression ability and helping to realize fine-gained access control. Role hierarchy and the task stat migration are brought into RTBAC for dynamic authorization management. Based on the practice, RTBAC model is more efficient to control collaborative operations. It meets the characters of design tasks. Different designers with different roles in different tasks have multi-level privileges to the components; the designers see only the data they are allowed to see, at the level of detail they are permitted to see it, which avoids the shortcoming of \"all-or-nothing\" permissions.","PeriodicalId":382705,"journal":{"name":"2010 2nd IEEE International Conference on Information Management and Engineering","volume":"51 17 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-04-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Hierarchical and dynamic security access control for collaborative design in virtual enterprise\",\"authors\":\"Fu Cuiyu, Li Aiping, Xu Liyun\",\"doi\":\"10.1109/ICIME.2010.5477976\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes a hierarchical and dynamic security access control we call RTBAC (role and task-based access control) model for cooperation in a virtual enterprise. A multi-level privilege model is developed to simplify the process of permission definition and assignment for enriching the expression ability and helping to realize fine-gained access control. Role hierarchy and the task stat migration are brought into RTBAC for dynamic authorization management. Based on the practice, RTBAC model is more efficient to control collaborative operations. It meets the characters of design tasks. Different designers with different roles in different tasks have multi-level privileges to the components; the designers see only the data they are allowed to see, at the level of detail they are permitted to see it, which avoids the shortcoming of \\\"all-or-nothing\\\" permissions.\",\"PeriodicalId\":382705,\"journal\":{\"name\":\"2010 2nd IEEE International Conference on Information Management and Engineering\",\"volume\":\"51 17 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-04-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 2nd IEEE International Conference on Information Management and Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICIME.2010.5477976\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 2nd IEEE International Conference on Information Management and Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICIME.2010.5477976","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

摘要

本文提出了一种基于角色和任务的分层动态安全访问控制模型，我们称之为RTBAC (role and task-based access control)。提出了一种多级权限模型，简化了权限定义和分配过程，丰富了权限的表达能力，实现了精细访问控制。将角色层次结构和任务状态迁移引入RTBAC，实现动态授权管理。实践证明，RTBAC模型对协同作业的控制更为有效。它符合设计任务的特点。不同的设计人员在不同的任务中扮演不同的角色，对组件具有多级权限;设计师只能看到他们被允许看到的数据，在他们被允许看到的细节层面上，这避免了“全有或全无”权限的缺点。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Hierarchical and dynamic security access control for collaborative design in virtual enterprise

This paper proposes a hierarchical and dynamic security access control we call RTBAC (role and task-based access control) model for cooperation in a virtual enterprise. A multi-level privilege model is developed to simplify the process of permission definition and assignment for enriching the expression ability and helping to realize fine-gained access control. Role hierarchy and the task stat migration are brought into RTBAC for dynamic authorization management. Based on the practice, RTBAC model is more efficient to control collaborative operations. It meets the characters of design tasks. Different designers with different roles in different tasks have multi-level privileges to the components; the designers see only the data they are allowed to see, at the level of detail they are permitted to see it, which avoids the shortcoming of "all-or-nothing" permissions.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2010 2nd IEEE International Conference on Information Management and Engineering

自引率

0.00%

发文量