ORGANIZATION OF USER ACCESS DIFFERENTIATION TO INFORMATION SYSTEM FUNCTIONALITY

Authors

  • A. Pletnev «SimCo Soft» LLP

DOI:

https://doi.org/10.31618/ESSA.2782-1994.2022.1.77.232

Keywords:

role model access, information systems, web-technologies, web-token, backend, frontend.

Abstract

This article offers practical guide on how to organize user access differentiation to information system functionality on the basis of the author's improvement of the classical scheme of the Role Model of user access control. Recommendations on the implementation of the proposed system of access differentiation in the information system are given. The peculiarities of the construction of the mechanism of user authentication using web-tokens in the context of the proposed system are briefly touched upon.

Author Biography

A. Pletnev , «SimCo Soft» LLP

Independent researcher, CEO «SimCo Soft» LLP, Team lead «OneBill» LLP

References

Kirillov V. V., Gromov G. Ju. Vvedenie v reljacionnye bazy dannyh. – SPb.: BHV-Peterburg, 2009.

Pletnev A.V. Vybor tehnologicheskogo steka dlja it-proekta / Internauka: jelektron. nauchn. zhurn. 2021. № 36(212). / [Jelektronnyj resurs].

URL: https://internauka.org/journal/science/internauka/212 (data obrashhenija: 11.11.2021).

Klient-server. / [Jelektronnyj resurs]. URL: https://ru.wikipedia.org/wiki/Klient_— _server (data obrashhenija: 02.09.2021).

Kurs lekcij Zashhita Informacii/Rolevaja model'. / [Jelektronnyj resurs]. URL:

https://ru.wikibooks.org/wiki/Kurs_lekcij_Zashhita_ Informacii/Rolevaja_model' (data obrashhenija: 12.11.2021).

Belov Maksim. Osnovy i sposoby informacionnoj bezopasnosti v 2017 godu / [Jelektronnyj resurs]. URL: https://habr.com/ru/post/344294/ (data obrashhenija:

11.2021).

Sevast'janova Ljudmila. Stroim rolevuju model' upravlenija dostupom. / [Jelektronnyj resurs]. URL: https://habr.com/ru/company/solarsecurity/blog/50999 8/ (data obrashhenija: 10.11.2021).

Spisok kodov sostojanija HTTP. / [Jelektronnyj resurs]. https://ru.wikipedia.org/wiki/Spisok_kodov_sostojan ija_HTTP (data obrashhenija: 03.11.2021).

Upravlenie dostupom na osnove rolej. / [Jelektronnyj resurs]. URL: https://ru.wikipedia.org/wiki/Upravlenie_dostupom_ na_osnove_rolej (data obrashhenija: 02.11.2021).

JSON Web Token. / [Jelektronnyj resurs]. URL: https://ru.wikipedia.org/wiki/JSON_Web_Token (data obrashhenija: 12.11.2021).

Published

2022-02-17

Issue

Section

Статьи