Hits:

Date:2019-03-11

Indexed by:Conference Paper

Date of Publication:2008-09-02

Included Journals:Scopus、CPCI-S、EI

Volume:1

Page Number:137-143

Abstract:Although RBAC models have received broad support as a generalized approach to access control, the administration of roles in large organizations can become quite cumbersome. In this paper, we develop a new paradigm for access control and authorization management, called task-role based access control(T-RBAC) with multi-constraint. The basic idea of this model different from traditional RBAC is that roles and permissions are not connected directly but are put together by tasks. It is a dynamic authorization model with fine-grained partition on users, roles, tasks and sessions. The unit of task becomes the permission granularity. It is more convenient for enterprise privilege management such as distributed application, C/S access control and workflow management. It can reduce the administrators burden and avoid some potential safety hazards because of adopted dynamic authorization.