Design on role-based multi-area access control method in electric power unified application platform system
Cheng Zhou , Jian Shi
COMPUTER MODELLING & NEW TECHNOLOGIES 2014 18(12A) 377-383
China Electric Power Research Institute, NARI Road.No.8, Nanjing, China, 210003
With the further promotion of smart grid and the concentration of business systems, the State Grid Corporation put forward higher information security protection requirements. This paper proposes a Role-based Multi-area Access Control Method (RMACM), which provides a generalized and effective mechanism of security management in Electric Power Unified Application Platform System. RMACM provides a set of items constraint specifications. These constraint specifications are organized to form a construction, and an enact process is proposed to make it scalable and flexible to meet the need of diversified service application systems. Concerned on the problem that the standard role-based access control mechanism does not consider the implementation in multi-area secure, RMACM erases the downward information flow by extended rules of read and write and some authorization constraints while still keeping the expressive power and flexibility of standard RBAC, which makes up the limitations when applying standard RBAC on multi-area systems.