| ABSTRACT | 第1-5页 |
| 摘要 | 第5-12页 |
| List of Figures | 第12-13页 |
| List of Tables | 第13-14页 |
| Chapter 1 Introduction | 第14-18页 |
| ·Background and Motivation | 第14-15页 |
| ·Problem Definition | 第15-16页 |
| ·Thesis Contributions | 第16-17页 |
| ·Thesis Organization | 第17-18页 |
| Chapter 2 Theory Foundations for Role Based Access Control | 第18-32页 |
| ·Access Control Concepts | 第18-22页 |
| ·Mandatory Access Control(MAC) | 第20-21页 |
| ·Discretional Access Control(DAC) | 第21页 |
| ·Role Based Access Control(RBAC) | 第21-22页 |
| ·Core Role Based Access Control Features | 第22-26页 |
| ·Roles | 第23-24页 |
| ·Permissions | 第24-25页 |
| ·Users | 第25页 |
| ·Operations | 第25-26页 |
| ·Objects | 第26页 |
| ·Managing Roles and Role Relationship in a Sensitive Environment | 第26-30页 |
| ·Role Hierarchy | 第27-29页 |
| ·Role Activation | 第29页 |
| ·Separation of Duty Relations | 第29-30页 |
| ·Summary | 第30-32页 |
| Chapte 3 Security Requirements for Digital Library Systems | 第32-44页 |
| ·Security Challenges for Digital Library Systems | 第32-33页 |
| ·Role Based Access Control Model for Digital Library Systems | 第33-38页 |
| ·Access Control Framework for Digital Library Systems using XML Capabilities | 第34-37页 |
| ·Multi User-Role Permission Representation in RBAC Manager | 第37-38页 |
| ·Policy Specification for Access Control in Digital Library Systems | 第38-43页 |
| ·Access Control Policy Table for Digital Library Systems | 第39-41页 |
| ·Elements of Access Control Policy | 第41-43页 |
| ·Summary | 第43-44页 |
| Chapter 4 Formal Specification of RBAC Manager for Digital Library Systems | 第44-54页 |
| ·Overview of Digital Library Management Systems | 第44-45页 |
| ·Context-Sensitivity in Digital Library Management Systems | 第45页 |
| ·Open Issues Affecting Access Control in a Digital Library | 第45-48页 |
| ·Intellectual Property and Copyrights Issues in Digital Library Systems | 第46-47页 |
| ·Enforcing Copyrights and Intellectual Property Control into RBAC Manager | 第47-48页 |
| ·Role Based Access Control Behavior in Digital Library Systems | 第48-50页 |
| ·Attributes of the Role Based Access Control Manager | 第50-51页 |
| ·XML Schema Representation of the Role Based Access Control Manager | 第51-53页 |
| ·Summary | 第53-54页 |
| Chapter 5 Case Study | 第54-80页 |
| ·Functional Specification for the RBAC Manager | 第54-59页 |
| ·Administrative Functions | 第55页 |
| ·Supporting System Functions | 第55-56页 |
| ·Review Functions | 第56-57页 |
| ·UML Modeling of the RBAC Manager | 第57-58页 |
| ·Dynamic Modeling of RBAC Manager | 第58-59页 |
| ·Data Service-Tier Design | 第59-68页 |
| ·Logical Design | 第60-62页 |
| ·Physical Design | 第62-64页 |
| ·Relational Database Modeling for the Case Study | 第64-68页 |
| ·Web Application-Tier Design | 第68-72页 |
| ·Program Logic Design | 第70页 |
| ·Overview of the .Net Framework | 第70-72页 |
| ·Server-Side Processing | 第72页 |
| ·Client-Side Implementation of the RBAC manager | 第72-77页 |
| ·Login.aspx Form | 第73-75页 |
| ·AddUser.aspx Form | 第75-77页 |
| ·AddResource.aspx Form | 第77页 |
| ·Control Access to the Application | 第77-79页 |
| ·Summary | 第79-80页 |
| Chapter 6 Thesis Conclusions and Future Work | 第80-82页 |
| ·Thesis Conclusions | 第80页 |
| ·Future Work | 第80-82页 |
| REFERENCES | 第82-86页 |
| ACKNOWLEDGMENT | 第86-87页 |
| GLOSSARY | 第87-89页 |
| PUBLICATION | 第89页 |
