摘要: 针对安全领域存在的身份识别与访问管理(IAM)问题,提出在企业资源计划(ERP)应用系统中正确鉴别用户身份的设计方法。采用多因子认证技术,为ERP系统定制防火墙,使用AES和MD5算法对保存或传输的数据进行加密,通过进程间的通信将IAM系统与ERP系统平滑连接,从而避免来自系统内外的攻击,为系统资源的安全管理提供可靠保证。
关键词:
身份识别与访问管理,
ERP系统,
系统设计
Abstract: Aiming at Identification and Accessing Management(IAM) in security area, the design scheme is put forword for the correctness of identifying consumers’ identities in Enterprise Resource Planning(ERP) system. It uses technique of multiple factors certification. Moreover, a firewall is designed for ERP system specially. It encrypts the saving or transmission data by AES/MD5 algorithms. Process communication technique is applied in connecting IAM system and ERP system smoothly. In these ways, ERP system avoids attacks from outside and inside, so that ensures its own system resources’ security management.
Key words:
Identification and Accessing Management(IAM),
Enterprise Resource Planning(ERP) system,
design of system
中图分类号:
朱诗生;汪 涛;. ERP系统中IAM功能的应用设计[J]. 计算机工程, 2010, 36(3): 184-185,.
ZHU Shi-sheng; WANG Tao;. Application Design of IAM Function in ERP System[J]. Computer Engineering, 2010, 36(3): 184-185,.