| Summary: | 碩士 === 世新大學 === 資訊管理學研究所(含碩專班) === 94 === The rapid growth of the Internet brings mankind the convenience as well as the changes of lifestyle and working environment. Through the Internet, users can perform a lot of tasks such as sending emails, querying user’s network bank account balance, looking up the human resource system on the Intranet… etc. So far, most businesses implement the Intranet by relevant internet technologies, which authenticate users through single sign-on and identification, and then authenticated users are allowed to access all kinds of information resources on the Intranet. Hence, an important issue has been raised that how to let users access resources appropriately.
Role-based access control (RBAC) architecture maintains the relationships between users and roles as well as between roles and privileges, which enables users and privileges to operate on their interactive relationship. This allows information systems to offer users appropriate access privileges for resources accessing.
This paper performs the concept of RBAC, which allocates users applicable access privilege according their roles when they access information systems. RBAC enhances administrative convenience, scalability, and flexibility. Meanwhile, combing the directory service architecture, RBAC also enables administrators to query faster, which can mitigate their workload significantly.
|
|---|
