Issue |
E3S Web Conf.
Volume 360, 2022
2022 8th International Symposium on Vehicle Emission Supervision and Environment Protection (VESEP2022)
|
|
---|---|---|
Article Number | 01051 | |
Number of page(s) | 14 | |
DOI | https://doi.org/10.1051/e3sconf/202236001051 | |
Published online | 23 November 2022 |
A dual-role hierarchical RBAC extended security model based on department attributes and its application
1 State Grid, Xiangtan Power Supply Company, 411007 Xiangtan, China
2 State Grid, Hunan Information and Communication Co., Ltd., 410004 Changsha, China
* Corresponding author: 55462305@qq.com
In order to overcome the problems of the classic RBAC model, such as user identity cannot be verified, role assignment conflicts, permission leakage, complicated roles and permissions configuration, etc., this paper proposes a dual-role hierarchical RBAC extended security model based on department attributes. Firstly, based on the identity authentication mechanism, the legality of the user identity used by the system and its department attributes are authenticated, and the legal identity users are associated with their departments. Then, the roles were divided into responsibility roles and system roles in the classic RBAC model, which are defined by the system administrator is responsible for configuring system roles according to the permission control requirements of resources and operations in the system. The person in charge of the department to which the user belongs configures the role for the user according to the actual work responsibilities of each user, and the person in charge of the department is responsible for the relationship between the role and the system. Finally, this dual-role hierarchical RBAC extended security model based on department attributes is applied to the authority management scheme of a power grid business system. The security analysis and practical results show that this dual-role hierarchical RBAC extended security model based on department attributes is a system rights management solution with strong security and practicability.
© The Authors, published by EDP Sciences, 2022
This is an Open Access article distributed under the terms of the Creative Commons Attribution License 4.0 (http://creativecommons.org/licenses/by/4.0/).
Current usage metrics show cumulative count of Article Views (full-text article views including HTML views, PDF and ePub downloads, according to the available data) and Abstracts Views on Vision4Press platform.
Data correspond to usage on the plateform after 2015. The current usage metrics is available 48-96 hours after online publication and is updated daily on week days.
Initial download of the metrics may take a while.