Role-Layering Access Control Model Research and Achievement

ZHU Tong,LI Sheng-hong
DOI: https://doi.org/10.3969/j.issn.1007-1423-b.2005.12.005
2005-01-01
Abstract:The access control is one of the multitudinous computer security solutions. Now the Role-based access control model is acknowledged a effective access control model for big enterprise to solve unitized re- sources. The Role-Layering access control model is brought forward a improved access control model based on the Role-based access control model in this thesis to solve the problems produced by using the Role- based access control model in practical applications. The essential of the Role-Layering access control model is that it first deals with user-operation-object to relate the users and objects. The users through user-area related with objects through object-area. It can attest by mathematics model that it solved the complicated that the Role-based access control model is a three-dimensional matrix about user-operation- object at access control adjudication. The Role-Layering access control model first deals with user to user- area and user-area to role and object to object-area and operation to role step by step. Then there are two two-dimensional matrixes that role-operation and role-user-area (at this time user-area is equal with object- area) for adjudged at access control adjudication. At last it is reduced complication at access control adju- dication by layered users and objects at first.
What problem does this paper attempt to address?