Research On Security Access Control Model Of Power Market Operation System

Computer network technology is widely used in power industry. While the network technology resources are fully utilized, network security issues become more prominent.The operation system of electric power market composed of computer, data network and communication equipment, network technology standard and application software,is a complicated system. Electric power market operation system is the basis of the normal operation of the electric power market. Therefore, how to ensure the safety of the system becomes the primary problem. Because of the diversity of user roles in the power market operation system, the decentralization of market staff, many types of personnel, these reasons have increased the safety management of power market operation system.Access control policy is a means to access the system and the system resources, one of the contents of the security of the system. Access control policies limit the user to login system randomness. Therefore, the design of access control model for power market operating system will guarantee the safety of power market operation system to a great extent.Electric Power Market Operation System Access Control Model(EPMOSACM) is designed for the problem, insufficient in user authentication and not flexible in user operation authority assignment, of traditional access control model(RBAC).The model is based on the traditional access control model RBAC, which is composed of user identity authentication module, user risk assessment module, user privilege allocation module,data encryption module and information storage module. From the process of user login system, access to system resource and information storage system, these three aspects ensure the safety of users access to power market operation system. The access control model is based on the PKI digital certificate technology of user identity authentication module, which makes up the deficiency of the traditional access control model RBAC user authentication; designing the user risk assessment module and the authority distribution module to solve the problem of the user's operating rights allocation is not flexible; adding the data encryption and information storage module to make the user data transmission more reliable and the user operation information to become well documented. Finally, the application of the model shows that the model can guarantee thesafety of the operation system of the electric power market.