Abstract:
How to learn from or carry original security policies of various information systems, and how to build an authority system that meets multi-level and multi-subject division of data asset rights and responsibilities are real demands and urgent problems for enterprises. This paper defined concepts related to fusion access control policy, constructed authority system based on relevant definitions and enterprise business demands, gave unified formal expression and fusion calculation method, built corresponding verification framework, and finally verified effectiveness of authority system through aerospace business scenarios. Relevant results have reference value for multi-level, multi-subject and fine-grained data asset authority control in digital transformation.