【英文标准名称】:GuideforPrivilegeManagementInfrastructure
【原文标准名称】:权限管理基础组织的指南
【标准号】:ANSI/ASTME2595-2007
【标准状态】:现行
【国别】:美国
【发布日期】:2007-11-27
【实施或试行日期】:
【发布单位】:美国国家标准学会(US-ANSI)
【起草单位】:ASTM
【标准类型】:()
【标准水平】:()
【中文主题词】:企业;工业管理;管理;安全管理
【英文主题词】:Enterprises;Industrialmanagement;Management;Securitymanagement
【摘要】:Thisguidedefinesinteroperablemechanismstomanageprivilegesinadistributedenvironment.Thisguideisorientedtowardssupportofadistributedorservice-orientedarchitecture(SOA)inwhichsecurityservicesarethemselvesdistributedandapplicationsareconsumersofdistributedservices.Thisguideincorporatesprivilegemanagementmechanismsalludedtoinanumberofexistingstandards(forexample,GuideE1986andSpecificationE2084).Theprivilegemechanismsinthisguidesupportpolicy-basedaccesscontrol(includingrole-,entity-,andcontextual-basedaccesscontrol)includingtheapplicationofpolicyconstraints,patient-requestedrestrictions,anddelegation.Finally,thisguidesupportshierarchical,enterprise-wideprivilegemanagement.Themechanismsdefinedinthisguidemaybeusedtosupportaprivilegemanagementinfrastructure(PMI)usingexistingpublickeyinfrastructure(PKI)technology.Thisguidedoesnotspecificallysupportmechanismsbasedonsecret-keycryptography.MechanismsinvolvingprivilegecredentialsarespecifiedinISO9594-8:2000(attributecertificates)andOrganizationfortheAdvancementofStructuredInformationStandards(OASIS)SecurityAssertionMarkupLanguage(SAML)(attributeassertions);however,thisguidedoesnotmandateorassumetheuseofsuchstandards.Manycurrentsystemsrequireonlylocalprivilegemanagementfunctionality(onasinglecomputersystem).Suchsystemsfrequentlyuseproprietarymechanisms.Thisguidedoesnotaddressthistypeoffunctionality;rather,itaddressesanenvironmentinwhichprivilegesandcapabilities(authorizations)shallbemanagedbetweencomputersystemsacrosstheenterpriseandwithbusinesspartners.Thisstandarddoesnotpurporttoaddressallofthesafetyconcerns,ifany,associatedwithitsuse.Itistheresponsibilityoftheuserofthisstandardtoestablishappropriatesafetyandhealthpracticesanddeterminetheapplicabilityofregulatorylimitationspriortouse.
【中国标准分类号】:A90
【国际标准分类号】:03_100_01
【页数】:
【正文语种】:英语