ORGANIZATION OF USER ACCESS DIFFERENTIATION TO INFORMATION SYSTEM FUNCTIONALITY

Authors

  • A. Pletnev «SimCo Soft» LLP

DOI:

https://doi.org/10.31618/ESSA.2782-1994.2022.1.77.232

Keywords:

role model access, information systems, web-technologies, web-token, backend, frontend.

Abstract

This article offers practical guide on how to organize user access differentiation to information system functionality on the basis of the author's improvement of the classical scheme of the Role Model of user access control. Recommendations on the implementation of the proposed system of access differentiation in the information system are given. The peculiarities of the construction of the mechanism of user authentication using web-tokens in the context of the proposed system are briefly touched upon.

Author Biography

A. Pletnev , «SimCo Soft» LLP

Independent researcher, CEO «SimCo Soft» LLP, Team lead «OneBill» LLP

References

Kirillov V. V., Gromov G. Ju. Vvedenie v reljacionnye bazy dannyh. – SPb.: BHV-Peterburg, 2009.

Pletnev A.V. Vybor tehnologicheskogo steka dlja it-proekta / Internauka: jelektron. nauchn. zhurn. 2021. № 36(212). / [Jelektronnyj resurs].

URL: https://internauka.org/journal/science/internauka/212 (data obrashhenija: 11.11.2021).

Klient-server. / [Jelektronnyj resurs]. URL: https://ru.wikipedia.org/wiki/Klient_— _server (data obrashhenija: 02.09.2021).

Kurs lekcij Zashhita Informacii/Rolevaja model'. / [Jelektronnyj resurs]. URL:

https://ru.wikibooks.org/wiki/Kurs_lekcij_Zashhita_ Informacii/Rolevaja_model' (data obrashhenija: 12.11.2021).

Belov Maksim. Osnovy i sposoby informacionnoj bezopasnosti v 2017 godu / [Jelektronnyj resurs]. URL: https://habr.com/ru/post/344294/ (data obrashhenija:

11.2021).

Sevast'janova Ljudmila. Stroim rolevuju model' upravlenija dostupom. / [Jelektronnyj resurs]. URL: https://habr.com/ru/company/solarsecurity/blog/50999 8/ (data obrashhenija: 10.11.2021).

Spisok kodov sostojanija HTTP. / [Jelektronnyj resurs]. https://ru.wikipedia.org/wiki/Spisok_kodov_sostojan ija_HTTP (data obrashhenija: 03.11.2021).

Upravlenie dostupom na osnove rolej. / [Jelektronnyj resurs]. URL: https://ru.wikipedia.org/wiki/Upravlenie_dostupom_ na_osnove_rolej (data obrashhenija: 02.11.2021).

JSON Web Token. / [Jelektronnyj resurs]. URL: https://ru.wikipedia.org/wiki/JSON_Web_Token (data obrashhenija: 12.11.2021).

Downloads

Published

2022-02-17

Issue

Vol. 1 No. 01(77) (2022)

Section

Статьи

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-NoDerivatives 4.0 International License.

CC BY-ND

A work licensed in this way allows the following:

1. The freedom to use and perform the work: The licensee must be allowed to make any use, private or public, of the work.

2. The freedom to study the work and apply the information: The licensee must be allowed to examine the work and to use the knowledge gained from the work in any way. The license may not, for example, restrict "reverse engineering."

2. The freedom to redistribute copies: Copies may be sold, swapped or given away for free, in the same form as the original.