摘要
国网甘肃省电力公司于2013年完成了统一权限平台的建设,实现了业务系统组织机构、用户、角色、菜单功能等数据的统一管理和业务系统的安全认证。在实现业务权限统一管理的同时,面对庞大的业务系统注册资源数据量,如何实现业务权限的安全管理,是统一权限平台需要研究的重点。结合甘肃电力业务应用实际情况及业务特点,着力于业务系统权限资源安全性及合规性管理方案,采用国家电网公司统一开发设计平台SG-UAP为基础平台,利用已经建成的统一权限平台中的敏感、互斥资源数据,通过采集业务系统用户行为日志进行分析及预警,以实现对甘肃电力业务系统权限的安全管理。
State Grid Gansu Electric Power Company completed the construction of a unified authority platform in 2013, realized the service system security authentication and unified data management of service system organization, user, role, the menu and etc. However, how to realize the safe management of service authority is the focus of the unified authority platform. Combining with the actual situation and business characteristics of State Grid Gansu Electric Power Company, focusing on the business system permissions resources security, this paper proposes a compliance management scheme. Using the SG-UAP(China State Grid Corp unified design and development platform) and the sensitive, mutually exclusive resource data in the platform, the proposed scheme can realize the security management of business system in Gansu Electric Power Company, by means of business system user behavior log analysis and early warning.
出处
《电力信息与通信技术》
2015年第2期106-109,共4页
Electric Power Information and Communication Technology
