| Summary: | 碩士 === 清雲科技大學 === 資訊管理所 === 99 === Related to electronic commerence applications as the global Internet population has more than a quarter of global population and it has been the trend of the times. The enterprise staffs may momentarily because of the network deposit enterprise information, anytime throught network access to various information systems within the enterprise to share KMS. However, in the Internet or Intranet open systems architecture, the enterprise internal systems suffers incidents of the illegal instrusion and improper access often to take place. Therefore, it’s very important research topic that how to design secure and effective information systems access control mechanism for the enterprise in the present age. Role-based access control (RBAC) model is an access control mechanism which is based on roles to distinguish between authority.After that, NIST adopted RBAC model in 2001,Ravi Sandhu and Edward J. Coyne and other scholars proposed to the RBAC model which can be implemented, applied to all walks of life today among the various application systems. More and more researchers studied RBAC in recent years.Various kinds of RBAC-based information systems were developed.
Therefore, this research proposes a novel RBAC model is based on ISMS laboratory platform ststems of Ching Yun University. As a result of, has the role designation connection, the role to inherit, the duty division of labor, least privilege, separation of duties, the data abstraction with between division''s characteristic and so on information classifications. This RBAC model will make sure that the enterprise has an applicable assignment and the operation in future enterprise is mor efficiently.
|
|---|
