| 电信企业网中账号口令集中管理体系研究 |
| |
| 引用本文: | 朱国萃.电信企业网中账号口令集中管理体系研究[J].计算机安全,2008(12). |
| |
| 作者姓名: | 朱国萃 |
| |
| 作者单位: | 中国移动通佶集团浙江有限公司,浙江,杭州,310006 |
| |
| 摘 要: | 目前,国内电信企业的信息系统控制必须符合萨班斯法案的相关要求,同时信息系统的不断增加使访问控制管理的难度加大。为此,电信企业逐步引入了"4A",集中进行账号(Account)管理、授权(Authorization)管理、认证(Authentication)管理和安全审计(Audit)。该文基于此概念,提供账号口令集中管理体系结构,以实现电信企业网内对重要系统资源的集中访问控制。
|
| 关 键 词: | 账号口令集中管理 账号 授权 认证 安全审计 |
Architecture of centralized account end password management system in communication enterprises |
| |
| ZHU Guo-cui.Architecture of centralized account end password management system in communication enterprises[J].Network & Computer Security,2008(12). |
| |
| Authors: | ZHU Guo-cui |
| |
| Abstract: | Nowadsys the management of information systems in communication enterprises of China must conform to the clauses of Sarbanes - Oxley Act. It has become more difficult to implement access control while applying increasing information systems. So 4A(Account; Authorization; Authentication; Audit) is gradually introduced. Based on this concept, the architecture of centralized account and password management system is proposed, in order to implement centralized access control of important systems and resources in communication enterprises. |
| |
| Keywords: | centralized accout and password management account authorization authentication audit |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
