RBAC在ATP车载设备管理信息系统中的应用
Application of RBAC in Management Information System of ATP on board equipment
-
摘要: 基于角色的访问控制(RBAC)是保证信息系统资源安全的一种策略。本文详细介绍了RBAC模型,并给出了其形式化定义。将RBAC模型应用于ATP车载设备管理信息系统,设计了该系统访问控制的数据物理模型,实现了该信息系统对关键资源的限制访问。该系统成功地投入使用,表明RBAC模型可有效实现信息系统的权限控制。Abstract: Role-Based Access Control (RBAC) was a means to ensure the security of information system resources. This paper described the RBAC model and given its formal definition. RBAC model was applied to ATP Management Information System, and physical data model of access control was designed. Finally it was implemented restrict access to the critical resources of the System. The System was used successfully, and indicated that RBAC model could effectively control access of Information System.