关键词: 应用服务提供商, 基于角色的访问控制, 授权策略, 权限管理

Abstract: Aiming at the structure characteristics of Application Service Provider (ASP) system, management requirements for access control in ASP system were analyzed. To meet those requirements, an access control model named ASP-RBAC, which presenting ′1+n′ layout, was designed and developed based on the Role Based Access Control (RBAC) model and techniques. In this model, the conception of globe role was imported to realize the uniform supervision of the roles , and the technique of domain label was utilized to execute the domain distinguishing. Also, the authority policies of top management lay and system initialization was formalized by the assignment function of ARBAC97. ASP-RBAC not only realized the fine-granularity access control in sub-logic-system but also realized different function configuration among those sub-logic-systems. Access control model of ASP-PISP was provided to illustrate the application of ASP-RBAC.

Key words: application service provider, role based access control, authority policy, authority management