Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A Design Method of Multi-Dimensional Authority Model for Matrix Management

A technology of permission model and design method, applied in computing, structured data browsing, electronic digital data processing, etc., can solve the problems of huge workload, high skill requirements for administrators, and inconvenience, and achieve vertical and horizontal management and control. , avoid information leakage, improve the effect of controllability

Active Publication Date: 2021-08-13
杭州新中大科技股份有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] (1) The definition of information isolation rules is too complicated and requires high skills for administrators;
[0008] (2) The definition of information segregation rules is not intuitive, it is not easy to easily track errors in empowerment, and there is a high risk of information leakage;
[0009] (3) When the time for data filtering and processing by SQL language is too long, the performance of the system is significantly reduced, which greatly reduces the user experience;
[0010] (4) When there are many information resources that require authority control, such as complex and diverse business documents, the workload of administrator empowerment is still very large

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A Design Method of Multi-Dimensional Authority Model for Matrix Management
  • A Design Method of Multi-Dimensional Authority Model for Matrix Management
  • A Design Method of Multi-Dimensional Authority Model for Matrix Management

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0046] This embodiment proposes a multi-dimensional authority model design method for matrix management, including the following steps:

[0047] A. The system administrator grants information permissions to users or roles through information management objects:

[0048] After enabling the information management object, the system administrator authorizes the information access rights of the user or role, and binds the metadata field with the information management object;

[0049] In the metadata, define the accessible range of information resources, and bind a data type of information resources with information management objects; for example, bind field elements in business documents with information management objects; in this way, the system can obtain business The field in the document is bound to the information management object, so that this field can be queried as the query condition of the database statement.

[0050] On the authorization interface, the system admin...

Embodiment 2

[0075] This embodiment is to realize the multi-dimensional information authority in the information system, specifically including the following process:

[0076] 1. Set the main table information:

[0077] InfoManageObject: store information management object configuration, mainly including information management object unique identifier id, name, description, global, data source table, conditions and other information, data display mode (tree, list).

[0078] MetadataInfoObjRel: Stores the relationship between metadata fields and information management objects, mainly including business document ID, table name, field name, management object Id, additional conditions (conditional restrictions in some special cases)

[0079] RoleInfoObjRights: stores the authorization data of role information management objects, mainly including organization Id, role Id, information management object name, authority ID (organization management object is organization Id, operator management obj...

Embodiment 3

[0096] This embodiment is used to illustrate that information permissions can be controlled vertically and horizontally, refer to image 3 , listed the three-tier organization of East China region, branch, and office, and there are marketing departments under the organization.

[0097] The goal of vertical control is that in the customer relationship, pre-sales customers are confidential data to any organization, and there are pre-sales customer data that can be viewed by superiors. The specific implementation method is:

[0098] 1. In the information permission setting: the system administrator starts the organization and salesperson management objects, and then selects the pre-sales customer business document in the metadata, and sets the organization field to bind the organization information management object, and the salesperson field to bind the business information management object.

[0099] 2. In information authority control: In this way, anyone in the system who h...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention proposes a multi-dimensional authority model design method for matrix management, including the following steps: the system administrator grants information authority to users or roles through information management objects: after enabling the information management objects, the system administrator performs user or role Authorize information access rights, and bind metadata fields with management objects; in metadata, define the accessible range of information resources, and bind a data type of information resources to information resource objects; system administrators in the authorization interface , to grant access to data range permissions to each information management object of a user or role, and to control the scope of accessible resources by setting information management object values ​​or conditions. The present invention can not only handle vertical and vertical management and control of business documents, but also handle horizontal business collaboration of business documents, and use information management objects as information authority control dimensions to control information authority conveniently, quickly and accurately through information resource authorization of information management objects.

Description

technical field [0001] The invention relates to the technical field of authority management, in particular to a multi-dimensional authority model design method for matrix management. Background technique [0002] Traditional authority management method 1: authority means that the system (or organization) grants a specific user certain operating rights (or functions) to information resources (or objects); Have the right to prepare procurement plans, enter purchase orders, receive purchased materials, and pay suppliers. The specific implementation method is: separately define the user's operation authority to the information resources; this is one of the most important foundations of the information system data security. [0003] However, since the system administrator needs to individually authorize all operable information resources of all users, the workload is huge; [0004] Traditional rights management method 2: The concept of roles has been introduced internationally;...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/31G06F21/45G06F16/242G06F16/26
CPCG06F21/31G06F21/45G06F16/2433G06F16/26
Inventor 丰立新李伯鸣
Owner 杭州新中大科技股份有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products