Improvement and implementation ERBAC model
ERBAC模型的改进与实现*

This article expounded the shortages of RBAC96 model in the aspects of the authorization, access rules, and fine-grained access control in the practical application, and analysed the shortcomings of an extended role-based access control model (ERBAC), which integrated the authorization of users and roles, presented a new expansion mode to make the authorization more flexible and the security more secure. And it introduced access rules and fuzzy time constraint mechanism and the role of system modules and method of binding system modules and the role achieve the goals. Access rules and audit function and fuzzy time constraint mechanism make higher security, it could by binding system modules and the role to achieve fine-grained access. ERBAC model to make the authority more flexible and its security is more secure.