高级检索

    基于角色和任务的工作流授权模型及约束描述

    A Workflow Authorization Model Based on Role and Task and Constraints Specification

    • 摘要: 首先描述了一个基于角色和任务的工作流授权模型,其基本思想是角色和权限不直接挂钩而是通过任务把它们联系在一起,更方便权限粒度的控制和管理,然后以此模型为上下文背景提出了一个描述基于角色和任务的工作流授权约束的直观的形式化语言,称为RTCL.它以系统函数、集合以及变量符作为基本元素,证明了在语义上RTCL与严格形式的一阶谓词逻辑RFOPL是等价的.最后通过用RTCL表示各种各样的约束来说明RTCL的表现能力.

       

      Abstract: A workflow authorization model based on role and task is first described. The basic idea of this model is that roles and permissions are not connected directly but are put together by tasks. This is more convenient for controlling and managing the granularity of permissions. And then an intuitive formal language called RTCL is proposed, which takes the model as context to specify workflow authorization constraints based on role and task. RTCL uses system functions, sets and variable symbols as its basic elements and is proved to be equivalent to a restricted form of first order predicate logic called RFOPL on semantics. Finally, the expressive power of RTCL is demonstrated by showing how it can be used to express a variety of constraints.

       

    /

    返回文章
    返回