English  |  正體中文  |  简体中文  |  全文筆數/總筆數 : 18278/19583 (93%)
造訪人次 : 1028394      線上人數 : 695
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
搜尋範圍 查詢小技巧:
  • 您可在西文檢索詞彙前後加上"雙引號",以獲取較精準的檢索結果
  • 若欲以作者姓名搜尋,建議至進階搜尋限定作者欄位,可獲得較完整資料
  • 進階搜尋
    請使用永久網址來引用或連結此文件: http://nhuir.nhu.edu.tw/handle/987654321/20989


    題名: 整合角色和工作為基礎的動態存取控制架構研究
    其他題名: Integrating TBAC and RBAC for Dynamic Access Control
    作者: 李俊傑
    Lee, Jin-Jiey
    貢獻者: 資訊管理學系碩士班
    許成之
    Cheng-Chih Hsu
    關鍵詞: 角色;工作流程;存取控制;權限
    role;workflow;access control;authorization
    日期: 2002
    上傳時間: 2015-05-25 16:43:50 (UTC+8)
    摘要: 傳統電腦系統的權限認定,一直是針對個別使用者來考量,也就是存取權限的授予是針對個別使用者,但這種方式在人員有異動時,將會造成權限設定的大量更動。而「以角色為基礎的存取控制(RBAC, Role-Based Access Control)」,是以角色為對象來配置權限,並指定使用者擔任某一或多種角色,透過使用者─角色─程式三個層次對應,來形成整個權控架構,其優點是人員變動時,只需要更改使用者與角色的對映即可。 RBAC雖然提供了管理上的便利性,但卻缺乏企業管理中十分重要的工作流程管理。此外,「以工作為基礎的存取控制(TBAC, Task-based Authorization Control)」,是以工作為控制對象,針對工作與工作間可能發生的衝突來考量,建立一種授權步驟來控管每個工作流程。 本研究以RBAC為基礎,結合了強調工作流程的TBAC,提出一套在執行時期的動態存取控制模型,並從工作與工作間相對的關係來驗證此模型的可行性。我們所提的方法可輕易解決權責衝突、工作順序與工作相依等限制問題。此模型不僅解決了角色缺乏工作流程的缺點,也應付了執行時期可能的流程變動所引發的問題。由於此模型涵蓋了靜態與動態存取控制時的需求,因此也相當具有彈性與實用性。
    Traditionally, the individual users are the main consideration in computer authorization-identification system. However, it needs to set a large amount of installation when the employees changed. Role-Based Access Control (RBAC), distributes the user's authorization by the subject of roles, single or multiple, which builds the formation of whole access control structure. What the merit of this structure is to renew the user and the roles only when the members changed. Though the RBAC is a convenient managerial tool, it is lack of workflow-management, which is very important to an enterprise. On the other hand, Task-Based Authorization Control (TBAC), focus on the object of tasks, not only considers the conflicting between tasks, but also builds an authorization-step to manage every workflow. The study is based on RBAC and combined the TBAC which stressed workflow. It proposes a model of dynamic state access control to examine the probability of the model from the correlativity between tasks, and to break through the limitation of duty-conflict, task order, and task dependency during the executive period. The model not only resolves the problem of the roles lacked of workflow, but also deals with the flaw caused by the change of workflow during the executive period possibly. Because of concluding the need of static state and dynamic state access control, it is full of elasticity and practicability.
    顯示於類別:[資訊管理學系] 博碩士論文

    文件中的檔案:

    檔案 描述 大小格式瀏覽次數
    090NHU00396018-001.pdf157KbAdobe PDF370檢視/開啟
    index.html0KbHTML193檢視/開啟


    在NHUIR中所有的資料項目都受到原著作權保護.

    TAIR相關文章

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 回饋