计算机工程与应用 ›› 2008, Vol. 44 ›› Issue (14): 212-215.

• 工程与应用 • 上一篇    下一篇

面向飞机制造过程的统一用户管理体系及策略

李洲洋,田锡天,贾晓亮,陈国定   

  1. 西北工业大学 CAPP与制造工程软件研究所,西安 710072
  • 收稿日期:2007-10-24 修回日期:2008-02-27 出版日期:2008-05-11 发布日期:2008-05-11
  • 通讯作者: 李洲洋

Aircraft manufacturing process oriented unified user management system and strategy

LI Zhou-yang,TIAN Xi-tian,JIA Xiao-liang,CHEN Guo-ding   

  1. Institute of CAPP & Manufacturing Engineering Software,Northwestern Polytechnical University,Xi’an 710072,China
  • Received:2007-10-24 Revised:2008-02-27 Online:2008-05-11 Published:2008-05-11
  • Contact: LI Zhou-yang

摘要: 为解决航空制造企业制造过程信息安全管理困难的问题,在综合分析飞机制造过程对身份认证和访问控制需求的基础上,应用单点登录及访问控制技术,构建了面向飞机制造全过程的统一用户管理体系。该体系包括了统一身份认证管理系统和统一访问控制管理系统。重点对基于单点登录的统一身份认证策略和基于规则-任务-角色的统一访问控制策略(Rule-Task-Role Based Access Control,RTR-BAC)进行了详细地探讨,并在此基础上建立了统一用户管理信息模型。统一用户管理体系将分散的用户管理功能从各应用系统中独立出来,形成统一可配置的用户管理模块,实现了对飞机制造过程用户信息的统一管理。

关键词: 用户管理, 身份认证, 访问控制, 飞机制造过程管理

Abstract: To solve the problems of information security management in aircraft manufacturing process,an Aircraft Manufacturing Process oriented Unified User Management System(AMP-UUMS) is promoted based on the analysis of the needs of authentication and access control in aircraft manufacturing process,by distilling user management function from application systems.This system consists of two parts:unified user authentication system and unified access control system.Single Sign On(SSO)based unified user authentication police and Rule-Task-Role Based Access Control(RTR-BAC)Strategy are discussed in detail.Furthermore,a unified user management information model is established to provide user information for AMPUUMS.This paper provides a more efficient and safer method for user management.

Key words: user management, authentication, access control, aircraft manufacturing process management