针对分布式架构的网络电话管理系统的权限分配需求,结合传统基于角色的访问控制模型RBAC (role-based access control)提出了信任度权限分配方法TD-RBAC(trust degree RBAC)。将用户-角色-权限的模型拓展到用户-角色-信任度-权限值的模型,将传统RBAC模型权限分配问题通过信任度和权限值的引入转化为可以定量分析的数学模型问题,从而解决了传统RBAC模型在角色和权限对应复杂的问题,使网络电话管理系统在权限分配的问题上更加简单灵活。%According to the demand of permissions assignment in distributed architecture VOIP management system, combined with traditional role-based control model, a method of permissions assignment based on trust degree TD-RBAC(Trust Degree RBAC) was provided. The user-role-permission model was extended to user-role-trust degree-permission value model and the problem of permission assignment in traditional RBAC model was converted into mathematical quantitative analysis problem by introducing concept of trust degree and permission value. This method has solved the complex problem of complicated correspondence between roles and permissions, made permission assignment of VOIP management system more simple and flexible.
展开▼
