| The safety of information systems was attached much importance to in routine management in an enterprise with the application of computers and networks. The safety management of access control has become a hard core gradually since it is the core of computer network safety. There is a wide gap between the traditional access control models and information safety management, and moreover, the models designed for the given environment are not applicable.Enterprise A, founded in 1950s, is a sizeable research institution with focus on national defense technology. It is a technological density enterprise, and also a secrecy-keeping enterprise. But there were many problems in safety management of the inner access control, which threatened the safety of secret inner information. A technological resolution scheme for access control and a safety management model were proposed in this thesis after analysis of the specific needs for safety management of access control to information systems in enterprise A and comparison with the traditional model. This would offer a supplement to the traditional access control theory, and provide a new means of realization of access control based on role and information sorts control. The safety management of access control would be successful only to be established in the reality of the enterprise. The complexity of authorization and management costs would be reduced by combination of techniques and administrative means. And then the scheme of safety management would be in line with the organization configuration. |
PDF Full Text Request