摘要
涉密信息系统中的"三员"是指系统管理员、安全保密管理员、安全审计员。"三员分立"要求系统管理员、安全保密管理员、安全审计员三者之间的关系相互独立、互相制约,加强涉密信息系统保密管理,减少泄密风险。而三员分立权限控制模型就是基于"三员分立"的思想提出来的权限管理方法,该方法的设计和实现对于满足涉密信息系统三员管理要求,实现信息系统的安全保密具有重要意义。
Three management roles in the classified information system are administrator, secret keeper and auditor. Three-Roles-Separation model asks the three management roles mutual independence and condition, strengthening secret management in theclassified information system and avoiding secret risks. Access control model based on Three-Roles-Separation model is designedand implemented for satisfying the requirement of roles management in classified information system. This model is very importantfor classified information system to improve its security and secrecy.
出处
《电脑知识与技术》
2018年第5X期62-64,共3页
Computer Knowledge and Technology
关键词
三员
三员分立
权限控制模型
three management roles
three management roles separation
Role Based Access Control(RBAC)
