Power market operating system plays an important role in ensuring the safely, stably and economically running. Identity authentication and access control must be enhanced in order to protect the security of the important information in power market operating system. In the aspect of identity authentication, a new mutual authentication model between user and server is given in this paper. The model not only can realize the mutual authentication between user and server, also can produce the secret key between them to encrypt the communicating information. In the aspect of access control, a new role-and-credibility based dynamic access control model is designed in this paper. User's authority can be adjusted dynamically according to the credibility. In the aspect of ensuring stability of hierarchy relationship, the role is separated into abstract part and concrete part. After analyzing we can find that these models can protect information of user and server security, and also can ensure the stability of role hierarchy in the base of amending role's authority conveniently. |