计算机系统应用
計算機繫統應用
계산궤계통응용
APPLICATIONS OF THE COMPUTER SYSTEMS
2010年
4期
77-80
,共4页
基于角色的访问控制%内容管理系统%最小授权原则
基于角色的訪問控製%內容管理繫統%最小授權原則
기우각색적방문공제%내용관리계통%최소수권원칙
role-based access control%content management system%least privilege theorem
传统内容管理系统中,对用户直接授权的方法虽然简单,但不易管理;基于角色的访问控制方法(RBAC)增强了权限管理的灵活性和易扩展性,却可能造成权限泄露;给出ECMSAC模型,在RBAC的基础上,引入可实施的最小特权原则,减少了权限泄露的可能,提高了CMS的安全性.
傳統內容管理繫統中,對用戶直接授權的方法雖然簡單,但不易管理;基于角色的訪問控製方法(RBAC)增彊瞭權限管理的靈活性和易擴展性,卻可能造成權限洩露;給齣ECMSAC模型,在RBAC的基礎上,引入可實施的最小特權原則,減少瞭權限洩露的可能,提高瞭CMS的安全性.
전통내용관리계통중,대용호직접수권적방법수연간단,단불역관리;기우각색적방문공제방법(RBAC)증강료권한관리적령활성화역확전성,각가능조성권한설로;급출ECMSAC모형,재RBAC적기출상,인입가실시적최소특권원칙,감소료권한설로적가능,제고료CMS적안전성.
The method of granting users directly in traditional content management system is simple to implement,whereas it's difficult to manage.The method of RBAC enhances the flexibility and scalability of privileges management.However,it may lead to the leak of privileges.To slove the problems,this paper proposes a ECMSAC model,based on RBAC.It brings in applicable Least Privilege Theorem,reduces the likelihood of privilege's leak and boosts the security of CMS.
