Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

An access permission management method and system for a big data cluster

A technology for access rights management and access rights, applied in the field of access rights management methods and systems for big data clusters, can solve the problem that the granularity of access rights control is not fine enough, the access rights of big data clusters cannot be controlled, and there is no way to record feedback information in real time and other issues to achieve the effect of easy management and maintenance

Inactive Publication Date: 2019-06-18
LINEWELL SOFTWARE
View PDF6 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] (1) In the prior art, the authority policy is not used as a unit, and a complete policy tree is not used to implement rigorous authority control logic, resulting in the inability to effectively control the access authority of large data clusters
[0007] (2) When managing rights for many big data components, it is difficult to maintain a large number of table items, and the granularity of access rights control is not fine enough
[0008] (3) Lack of an effective audit mechanism. When users access big data resources, there is no way to record relevant operation information and feedback information given by the system in real time, resulting in missing logs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An access permission management method and system for a big data cluster
  • An access permission management method and system for a big data cluster

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0051] In order to make the object, technical solution and advantages of the present invention more clear, the present invention will be further described in detail below in conjunction with the examples. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0052] In the prior art, strict authority control logic is not implemented with authority policy as a unit and a complete policy tree, resulting in inability to effectively control access authority of big data clusters.

[0053] In order to solve the above problems, the present invention will be described in detail below in conjunction with specific solutions.

[0054] Such as figure 1 As shown, the embodiment of the present invention provides an access authority management system for big data clusters, including providing an access authority management system, a user synchronization component, an authority control plug-in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention belongs to the technical field of data processing, and discloses an access authority management method and system for a big data cluster, and the method comprises the steps: providing anaccess authority management system, a user synchronization assembly, an authority control plug-in, and corresponding control logic; The user information synchronization assembly installed on the machine to which the big data cluster belongs sends the user and user group information to the access authority management system at regular intervals; A system administrator customizes a corresponding authority strategy for each big data cluster, and gives various authorities such as reading, writing, checking and executing to corresponding users or user groups; The authority control plug-ins installed on the big data cluster automatically synchronize corresponding authority strategies; And the authority control plug-in authenticates the big data cluster when the user accesses the big data cluster, and controls the access authority of the user according to the defined authority strategy. According to the invention, through adoption of rigorous authority strategy logic, the purpose of big datacluster access authority control is achieved.

Description

technical field [0001] The invention belongs to the technical field of data processing, and in particular relates to an access authority management method and system for large data clusters. Background technique [0002] At present, ACL technology is commonly used in the industry to implement. ACL has certain advantages, such as intuitive expression, easy to understand, and it is relatively easy to find out all users who have access rights to a specific resource, and effectively implement authorization management. However, there are also some disadvantages. First, if there are many resources, ACL needs to set a large number of entries, and it is difficult to modify, and it is also difficult to achieve a consistent control policy within the entire organization. Second, it is not easy to implement the principle of least privilege by simply using ACL. And complex security policies; in addition, lack of auditing functions, the record of resource access has not formed an audit. ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/60G06F21/62
Inventor 李明溪
Owner LINEWELL SOFTWARE
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com