A New Access Control Model--TBPM-RBAC
一种新的访问控制模型——TBPM-RBAC

RBAC (role-based access control)can reduce the complexity of the management of access control, but it's still rather difficult to assign permissions to roles efficiently and reasonably,further more,RBAC is not fit to manage the access controls where exists dependency and sequence. This paper tries to solve the two difficulties mentioned above by embedding task mechanism in RBAC,that is,permissions are assigned to tasks,tasks are assigned to roles, and a role can only use the permissions that are allowed by the tasks it's executing. A model called TBPM-RBAC (task-based permissions management in RBAC)is proposed,then we present the definitions of the model,analyze the model and give two application examples of the model.