A data access security control method and device based on control-driven management

A security control and data access technology, applied in the field of information security, can solve problems such as the inability to assign permissions to users, and achieve good scalability

Active Publication Date: 2022-08-05
CHINA NAT ENVIRONMENTAL MONITORING CENT +1
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The core of access control is the user authorization strategy. At present, our commonly used authorization strategies include: access control list (ACL), role-based access control (RBAC), task-based or workflow-based access control (TBAC); in the data access control model Among them, the access control list (ACL) needs to maintain the access permission list of each resource; the role-based access control (RBAC) role is used as the assignment object of permissions, which cannot be done when assigning permissions to individual users; access based on tasks or workflows Control (TBAC) is not suitable for use alone in large systems

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A data access security control method and device based on control-driven management
  • A data access security control method and device based on control-driven management
  • A data access security control method and device based on control-driven management

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0017] The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are part of the embodiments of the present invention, not all of the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative efforts shall fall within the protection scope of the present invention.

[0018] In order to integrate multiple authorization policies, the present application provides a data access security control device based on control-driven management, which implements different authorization control drivers according to the authorization policies of access control. figure 1 , the data access security control device 1 includes an authority manager 11, a driver manager 12 and at least one authority control driver 13; the configuration file...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The application discloses a data access security control method and device based on control-driven management, and relates to the technical field of information security. The main technical scheme of the present application is as follows: the device includes: an authority manager, a driver manager and at least one authority control driver; the authority controller is an interface for access authority, sends an access request to the driver manager, and receives the driver manager The returned permission verification result; the driver manager provides an access interface for the permission control driver, finds the corresponding permission control driver according to the access request, and integrates the permission verification result of the permission control driver; the permission control driver searches for the permission policy according to the access request, and according to the permission policy Get the permission verification result. The invention implements data access security control through control-driven management, realizes the authority control requirements for different authorization strategies, can also be expanded according to actual requirements to meet the requirements of different users and different systems, and has good expansibility.

Description

technical field [0001] The present application relates to the technical field of information security, and in particular, to a data access security control method and device based on control-driven management. Background technique [0002] Data access security control is to authorize and control resources, so that users can use the resources in the platform within the legal scope of the system. The core of access control is the user authorization policy. At present, our commonly used authorization policies include: access control list (ACL), role-based access control (RBAC), task or workflow-based access control (TBAC); in the data access control model , the access control list (ACL) needs to maintain the access permission list of each resource; the role-based access control (RBAC) role is used as the assignment object of permissions, which cannot be done when assigning permissions to individual users; access based on tasks or workflows Control (TBAC) is not suitable for us...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40
CPCH04L63/10H04L63/0807H04L63/105
Inventor 宫正宇程麟钧张迪王正王勇
Owner CHINA NAT ENVIRONMENTAL MONITORING CENT
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap