问题描述
您好,这可能是一个愚蠢的问题,但是我对ACL,RBAC,DAC,MAC ...感到非常困惑。
仅举一个简单的在线大学管理示例具有以下用户类型的系统:
- admin
- hod
- 教师
- 学生
每个人都有不同的访问权限。 p>
有人可以让我了解在这里使用的ACL吗? RBAC? DAC?苹果电脑?为什么它会比其他人更好?我进行了很多搜索,但无法理解如何确定最适合上述情况的授权技术...
在在您的示例中,我建议使用RBAC而不是ACL,因为RBAC在增强和维护方面更加灵活,这将始终在大学管理系统之类的系统中。
在这种系统,您将对资源应用的特权或权限,并且随着系统扩展,这些资源将经常更改。因此,就数据库,代码和体系结构而言,从技术上管理所有这些资源及其访问控制将是一件令人头疼的事情。
如果在这种情况下应用RBAC,数据库和架构将具有足够的灵活性来处理将来的更改,您只需要相应地管理权限和操作,
Hello all this may be a silly question but I am really confused about ACL, RBAC, DAC, MAC...
with the simple example of online university management system that has following user types:
- admin
- hod
- faculty
- student
each of them have different privileges to access.
Can some one make me understand what will be used here ACL? RBAC? DAC? MAC? and why it will be preferable than others? I have searched alot but was not able to understand how to decide which authorization technique most fits the above situation...
In your example, I would suggest to use RBAC rather than ACL, because RBAC is more flexible for enhancements and maintenance, which will be always in system like University management system.
In this kind of system, the privilege or permissions you will apply on the resources, and these resources will be frequently changed as the system expands. so technically managing all these resources and their access controls will be a headache, in terms of database, code and architecture.
and if we apply RBAC in this case, database and architecture will be flexible enough for handling future changes, where you just need to manage permissions and actions accordingly,
这篇关于一般而言,ACL和RBAC有什么确切的区别?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!