Development Of Role Model For Computer System Security
Аннотация
The present article is devoted to development of a role model with zone differentiation of access. For safety of control and management of access, in this work, it is offered to use the approach based on concepts of "information resource" and "the functional module". By means of functional modules and the set of the universal operations called by the interface realized in them, access to information resources is provided. The interface of access to information resources determines a set universal for this type of resources of operations of access to the information maintenance of a resource, and also operations of its creation, destruction and management of properties, including by attributes of safety. All operations are unambiguously displayed on the relations of access regulated by models of safety of a computer network. Also are described, model of administration of access rights of roles. The choice of this type of a role model is caused by its proximity to real organizational and administrative and organizational and technological schemes at the enterprises and the organizations. In work it is offered functionally - a role model of differentiation of access with the zone policy, allowing to establish the relations of bilateral trust. The mechanism of realization of the developed role model with zone differentiation of access is offered.