%0 Journal Article
%T An RBAC Model Using Digital Certificates<br>RBAC的数字证书实现方案
%A ZHANG Da
%A |jiang
%A QIAN Hua
%A |lin
%A <br>张大江
%A 钱华林
%J 系统工程理论与实践
%D 2002
%I 
%X Role\|based access control is an effective approachto implement powerful access control for Intranet resource share to keep unauthorized event from happening. Based on the PKI and directory service of enterprise, we prompt a method to use X.509 certificate and attribute certificate to implement RBAC easily and flexibly. We analyze the problem of security and flexibility caused by only using X.509 certificate to implement RBAC, prompt the design of combined attribute certificate and give the implementation method of role assignment, permission assignment and role hierarchy.
%K RBAC
%K role
%K X
%K 509 certificate
%K attribute certificate
%K directory service<br>基于角色的访问控制
%K 角色
%K X.509证书
%K 属性证书
%K 目录服务
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=01BA20E8BA813E1908F3698710BBFEFEE816345F465FEBA5&cid=962324E222C1AC1D&jid=1D057D9E7CAD6BEE9FA97306E08E48D3&aid=44EC7C0CC10E385E&yid=C3ACC247184A22C1&vid=BC12EA701C895178&iid=E158A972A605785F&sid=E84BBBDDD74F497C&eid=CB423C9A71560A74&journal_id=1000-6788&journal_name=系统工程理论与实践&referenced_num=1&reference_num=5