By Topic

China official documents run system and its access control mechanism

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$33 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Yihong Lu ; Dept. of Comput. Sci. & Eng., Beijing Inst. of Technol., China ; Hantao Song ; Yuanming Gong ; Yunrong Liang

Recent years, papers on role-based access control (RBAC) have increasingly emerged, but not many of them deal with real large-scale applications. In this paper, through an example system, the China Official Documents Run System (CODRS), the issues on access control tactics in large-scale organizations are discussed. Also, the paper demonstrates that it is effective to apply role hierarchy tactics in large-scale applications. The basic access control policy and management methods in CODRS are introduced and an improved role hierarchy model based on the RBAC96 model is presented. Especially, a changeable role inheriting mechanism and some other key concepts and methods used in CODRS are discussed, and a comparison between the new model and RBAC96 model is given. Meanwhile, we conclude that because of the complexity of permission requirements in large applications, using the RBAC policy only is not enough, and it is also necessary to adopt traditional access control mechanisms in practices.

Published in:

Computer Supported Cooperative Work in Design, 2002. The 7th International Conference on

Date of Conference: