中文摘要：

在企业规模不断扩大的背景下,面对用户数量庞大、权限分配粒度要求较高的大型系统,传统的RBAC模型存在的角色数量过多、授权管理负担过重等问题尚未得到有效解决。为此,在传统RBAC的基础上进行改进,提出了一种扩展式基于角色的访问控制模型ERBAC,并给出了此模型的实现方式。

英文摘要：

In the face of complicated application systems which have a large number of roles and small-granularity permission assignments, the problems of excessive burden on authorization management have not been resolved effectively when RBAC （role-based access control） model is applied. An ERBAC （extended role-based access control） model based on RBAC is presented, and an implement of the model is provided.