Fine-grained data authority management and control configuration method and system based on attribute strategy

• Main Authors: LIU FUJIN, LIU DONG, YAN LIANG, WANG YUNBING
• Format: Patent
• Language: Chinese; English
• Published: 14.01.2022
• Subjects: CALCULATING; COMPUTING; COUNTING; ELECTRIC DIGITAL DATA PROCESSING; PHYSICS

The invention discloses a fine-grained data authority management and control configuration method and system based on an attribute strategy. The method comprises the following steps: S1 formulating an attribute strategy template; S2 respectively associating an access subject and an access object with the attribute strategy template; and S3 when the access subject initiates access to the access object, dynamically calculating the attributes of the access subject and the access object through the attribute matching decision center to judge whether the access subject has the authority to access. According to the invention, concise and efficient fine-grained control of data is realized, and dynamic switching and expansion of authority can be supported. 本发明公开了一种基于属性策略的细粒度数据权限管控配置方法及系统，该方法包括以下步骤：S1：制定属性策略模板；S2：将访问主体和访问客体分别与属性策略模板进行关联；S3：当访问主体向访问客体发起访问时，通过属性匹配决策中心对访问主体和访问客体的属性进行动态计算来判断访问主体是否有权限进行访问。本发明实现了对数据简洁和高效的细粒度管控，并能够支持权限的动态切换和扩展。