A Trust Fine-Grained Access Control Model for ERP System


Article Preview

In order to protect ERP system information from authorized users or non- trusted users, a trusted role based access control model was proposed. Combined with the characteristics of enterprises, trusted computation for user is designed to support roles assignment to the users. Meanwhile, Object Lifecycle States (OLSs) are presented for efficient access control to objects. Based on the value of trusted computation, users are assigned the corresponding roles to access control various resources. Finally, there is an empirical research on an ERP System implemented in a manufacturing enterprise.



Edited by:

Kai Cheng, Yingxue Yao and Liang Zhou




Z. L. Jiang et al., "A Trust Fine-Grained Access Control Model for ERP System", Applied Mechanics and Materials, Vols. 10-12, pp. 767-771, 2008

Online since:

December 2007




[1] R.S. Sandhu, E.J. Coyne and H.L. Feinstein, et al: IEEE Computer Vol. 29 (1996) No. 2, pp.38-47.

[2] D.F. Ferraiolo, R.S. Sandhu and S. Gavrila, et al: in ACM Trans. Information and System Security Vol. 4 (2001) No. 3, pp.224-274.

[3] Q.H. Liu, T.F. Xiong, L. Wan and L.P. Chen: Journal of computer-aided design & computer graphic Vo1. 17 (2005) No. 9, pp.2116-2122.

[4] W. Xu, J. Wei, and J. Li: Journal of Computer Research and Development Vol. 42 (2005) No. 8, pp.1369-1375.

[5] R. Bhatti, E. Bertino and Ghafoor, A.: Proc. International Conference on Web Services (ICWS'04) (San Diego, USA July 6-9, 2004).

[6] Y.Q. Wang: principle and application of artificial intelligence (Xi'an Jiaotong University Publication, Xi'an 1998). (b) (c) (a) Fig. 3 The interface of permission setting.