Considering the significance of organization in enterprise operating management, an access control model supporting organization GT-RBAC (Group-Task-Role-Based Access Control) is put forward, in this model, roles are defined and authorized through organization, not only reducing the number of roles, but also lowering the complexity of the authorization management. Combined with the model proposed, based on the constraint relations between tasks during the execution of the business processes, a task-based access control algorithm is given. Finally, a case of new vehicles purchase application workflow in a large enterprise for Auto Sales is presented, checking that the model and algorithm are feasible.

• 出版日期2012