Title :
Research of extended RBAC model on permission control in WEB information system
Author :
LiQing, Li ; Hai, Lu ; Rong, Yu ; XuDong, Li
Author_Institution :
Inst. of Comput. Applic., China Acad. of Eng. Phys., Mianyang, China
Abstract :
According to the characteristics of WEB management information system, a reasonable division has been made between the representation layer and the business layer to further define the relation of permission-page and permission-operation, the extended model ERBAC based on RBAC(Role-Based Access Control model) has been put forward to against the shortcoming of the traditional RBAC in WEB information system. The main idea of ERBAC is to introduce a new concept of “business action” which is made up by a series of menus, pages, and business operations. It subdivides access permission to different page URL and operation so that enhancing granularity of permission configure. access control has been separated from the representation layer and business layer of the WEB information system, the centralized management of access control has been realized to solve the traditional troublesome pages and logic control and has been applied in the actual system with Aspect-Oriented Programming (AOP) technology.
Keywords :
Internet; aspect-oriented programming; authorisation; business data processing; management information systems; AOP technology; ERBAC model; Web management information system; aspect-oriented programming technology; business layer; extended RBAC model; logic control; page URL; permission control; representation layer; role-based access control model; Business; Physics; AOP; ERBAC; RBAC; Web information system; permission;
Conference_Titel :
Communication Software and Networks (ICCSN), 2011 IEEE 3rd International Conference on
Conference_Location :
Xi´an
Print_ISBN :
978-1-61284-485-5
DOI :
10.1109/ICCSN.2011.6014584
