关键词: 协同设计, 访问控制, 基于角色的访问控制模型, 基于任务的访问控制模型, 动态授权管理

Abstract: Aiming at the access control problem of collaborative design process which included access control lifecycle constraint，access control number constraint and dynamic changes features，the Role-Based Access Control (RBAC) model and Task- Based Access Control (TBAC) model were extended and incorporated.At the same time，a CDACM model for dynamic access control in collaborative design was proposed.To realized context-sensitive subject and object dynamic authorization management，authorization state migration and access control constraint were controlled by introducing the state migration and constraint relation of design unit authorization structure.The problems of access time constraint and transaction integrity constraint were solved by setting the constraints of permission activating cycle time and permission access times.Moreover，access control policy and activation mechanism for collaborative design were given.The theoretical research was applied in the collaborative design access control system of chain-transportation，which tested the validity of the proposed model.

Key words: collaborative design, access control, role-based access control model, task-based access control model, dynamic authorization management