The Study and Implement of RBAC in Enterprise Information System

This article introduces the Role-Based Access Control model (RBAC) and proposes an improved model according to the characters of enterprise. Dynamic constraints on role are added when we establish the session, which can control the users' date access range. As a result of improved model, a role-based security scheme is designed. It strengthens the security of the system and simplifies the management of authority and matches the security requirements of enterprise.