Research On Organization Model Driven Access Control Integration And Application

With the development of enterprise information technology, the quantity and scale of theinternal information system of the enterprise has been widen, so the integration of enterpriseinformation system has become the hot-spot of the research. In the integration of enterpriseinformation system, it is common to be neglected that platform access control integrationexcept for the application integration, the platform integration and the data integration. Inaddition, with the mature of the cloud computing technology, small and medium-sizedenterprises begin to apply the mode of SaaS(Software as a Service). With the trend of serviceresources, as well as the resource types from static to dynamic function resources of resources,the original expansion of resource access control requirements become more complicate. Inthe tenant environment of the cloud service platform, cloud service providers are not able toprovide universal access control solution to each enterprise’s different needs. It meets theneeds of the tenant complicated control platform for all of the tenants user separatedistribution roles and permissions low efficiency. Meanwhile, there is a big problem about thecloud service provider that how to provide the tenant to resource isolation access and sharingaccess. From the view of the enterprise, as the enterprise utilized much platform systems, itrestricts the development of enterprise information as they can’t be able to control integrallyeach system and platform to realize unified access. In addition, it brought inconvenience aswell as affecting the efficiency of the enterprise business process as the enterprise internaluser’s repeated login and right when visiting each system.Aiming at solving the questions above, this article presents Service Oriented AccessControl Model driven by the organization model and faces service, which come from theorganization model of the enterprise business modeling, and the applies the model to multi-tenants access control and integration process of unified access control, so as toconstruct the access control integration driven by a complete organization model andapplication framework.The main research work is as follows:(1) Design an access control integration driven by a complete organization model andapplication framework.Firstly, it analyzes the framework ‘s application scenarios, according to the scenario, thegeneral framework of the frame is given, then it analysis concretely of the three main modulesof the framework: access control model generation module,many tenants access controlapplication module, function and innovation points of the unified access control integrationmodule.(2) Build the service oriented access control model driven by organization model.Based on the analysis of the intrinsic connection between the enterprise businessmodeling of organization model and resource model, and gives the core-the structure anddefinition of the service oriented access control model.(3) Design the implementation proposal for the multi-tenant access control integrationand application.Firstly, it designs the adaptation layer data of the access control model, which gets datapreprocessing and adapter work for the tenant access control application and unified accesscontrol on the integration. Secondly, I t designs the double structure for the tenant accesscontrol application which is divided into the platform layer and the tenant layer of, and brieflydescribes the application framework for many tenants access control. Finally, we construct atheoretical model of a unified access control integration, and gives a detail description ofrealization of a unified access control the of the integration process from three levels of thetransmission mechanism, data integration, interface integrated.(4) Implemented and verified the prototype system of access control integration andapplication platform.We established an access control integration and application platform. By the realizationof the access control function in service switching platform system and service resourcesplatform system, it verified the validity of the service oriented access control model driven bythe organization model.The prototype system verification results show that, the organization model drivenaccess control integration and application framework provides a rapid and effective solutionto tenants under the environment of cloud services platform and multi-platform many systemintegration enterprise access control, and has a certain application prospect.