Release Time:2019-03-11  Hits:

Indexed by: Conference Paper

Date of Publication: 2008-09-02

Included Journals: Scopus、CPCI-S、EI

Volume: 1

Page Number: 137-143

Abstract: Although RBAC models have received broad support as a generalized approach to access control, the administration of roles in large organizations can become quite cumbersome. In this paper, we develop a new paradigm for access control and authorization management, called task-role based access control(T-RBAC) with multi-constraint. The basic idea of this model different from traditional RBAC is that roles and permissions are not connected directly but are put together by tasks. It is a dynamic authorization model with fine-grained partition on users, roles, tasks and sessions. The unit of task becomes the permission granularity. It is more convenient for enterprise privilege management such as distributed application, C/S access control and workflow management. It can reduce the administrators burden and avoid some potential safety hazards because of adopted dynamic authorization.