摘要
为满足企业产品数据授权的多样化需求特点,在研究与分析现有几种访问控制模型的基础上,阐述了一个适用于PDM系统的多粒度数据控制模型,讨论数据访问控制主客体及其关联蔓延机制,提出复杂访问主体集、等价访问主客体等相关概念。说明了模型控制权限定义实现的数据存储结构设计,并就访问求解检测的算法给出了具体的实现步骤,最后介绍了该访问控制模型在实际系统中的成功应用。
In order to fred a solution on various authorization requirement of product data, a Multi-granularity control model for PDM system is put forward based on the analyze of several current access control model. Data access control object/subject and relation' s extension are discussed. On the other hand, concepts such as complex access subject aggregate and equivalent access object/subject are described. Design of the data storage structure with the definition of authorization is explained and detail steps about permission calculation are given to realize the model. Finally, successful application in practice of the access control model is introduced.
出处
《组合机床与自动化加工技术》
北大核心
2009年第8期49-53,共5页
Modular Machine Tool & Automatic Manufacturing Technique
基金
安徽省"十一五"科技攻关计划(07010202108)
关键词
访问控制
蔓延
等价访问
access control
extension
equivalent access
作者简介
柳吉庆(1982-),男,博士研究生,主要研究数字化设计与制造、产品数据管理,(E—mail)eyewar@163.com。
