A Document Access Control Model Based on Role and Security Policy

摘要

With the rapid development of information technology, electronic document security issues have become increasingly prominent. The existing document access control technologies have some limitations on the functionality, generality, expandability and granularity of control. In this paper, to design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model based on XACML-RBAC framework, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. The fine-grained authorization protection of document is implemented.