Skip to Main Content
In order to avoid the abuse of administrative permission in authorization process, the paper proposes a joint administration model. In the model, the concept of joint administrative role is proposed. A joint administrative role is comprised of several administrative roles who are assigned different weights, and regular roles are associated with different thresholds. Using the method, administrative roles can jointly assign the regular role to a user when the sum of weight exceeds the threshold. By setting the weight of administrative role and the threshold of regular role flexibly, the model can meet the requirement of diverse administrative scale and security hierarchies, and make the authorization decision more reasonable, improving the security of role assignment effectively.