CN105404822A - Access permission management method and access permission management system - Google Patents
Access permission management method and access permission management system Download PDFInfo
- Publication number
- CN105404822A CN105404822A CN201510698319.0A CN201510698319A CN105404822A CN 105404822 A CN105404822 A CN 105404822A CN 201510698319 A CN201510698319 A CN 201510698319A CN 105404822 A CN105404822 A CN 105404822A
- Authority
- CN
- China
- Prior art keywords
- access rights
- access
- personnel
- logging modle
- request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention relates to an access permission management method. The method comprises the following steps: a step of setting opening permissions and access permission types of user information, a step of receiving an access request, a step of managing access permissions, and a step of adjusting original settings. The invention furthermore proposes a management system for realizing the access permission management method. According to the access permission management method and system, the opening permissions of the user information and the access permission types of personnel are set, and the user information and the access personnel are managed according to different opening permissions and different access permission types, so that certain information of users is effectively prevented from being accessed by others without user permissions, the user information is securely managed, and the personal privacy of the users is protected.
Description
Technical field
The present invention relates to a kind of Information Security Management System, be specifically related to a kind of access rights management method and access rights management system.
Background technology
Increasing mobile phone users is by installing chat application software on mobile terminals now, as long as mobile terminal is in networking state, just can use chat application software messaging, voice call, Video chat etc. rapidly, carry out communication exchange with friend easily freely, quickly and easily.Chat application software also provides a kind of function, as long as anyone is ready, a group can be set up, people in his personal information logging modle is arbitrarily drawn in this group, the people be drawn in group also can arbitrarily draw other people to enter this group, the benefit done the so on the one hand people be convenient in group carries out topic discussion or dialogue, is also convenient to mutually be not familiar with but have the people of topics common or hobby to have an opportunity to be familiar with each other on the other hand, contributes to widening circle of friends.The drawback done like this is, be drawn into after in group, if this person is unwilling or is not suitable for entering this group, can only select voluntarily to exit, if but exit, system can issue the message that this person exits group in group, in this case, a lot of people can only select to shield message, or passively receives information, and this has virtually kidnapped user's power to make decision or even has invaded the privacy of user.Such as, and other people can the personal information of calling party, and phone, mailbox, photo etc., cause the leakage of personal information.Therefore, be necessary that working out a kind of technical scheme of user profile of can protecting solves above-mentioned technical matters.
Summary of the invention
The present invention, in order to solve the problems of the technologies described above, propose a kind of access rights management method and realizes the access rights management system of this access rights management method.
A kind of access rights management method that the present invention proposes, the method comprises the following steps:
The open authority set user information and the step of access rights type: the open authority of every content in user profile is arranged, and be recorded in the contents attribute of user profile logging modle; Access rights type is arranged to the personnel in personal information logging modle, and the type is recorded in the personnel's attribute in personal information logging modle;
Receive the step of request of access: when the personnel in personal information logging modle initiate the request of access to user, receive this request of access, this request of access comprises the content of request access;
The step of management access rights: the open authority of content and the access rights type of these personnel of the request access comprised according to this request of access respond;
Adjust the step of former setting: when needing the open authority of Suitable content, the step of the open authority set user information described in returning resets, and by the open authority records that resets in information attribute; When needing the access rights type of adjustment personnel, returning the described step that access rights type is set and resetting, and by the access rights class record that resets in personnel's attribute.
Preferably, the open authority of the described content according to this request access and the access rights type of these personnel respond the judgement of open authority of middle content prior to the judgement of the access rights type of these personnel.
Preferably, this access rights type comprises opening access rights, semi-open type access rights and restricted type access rights, and opening access rights refer to these personnel and get final product calling party information without the need to being allowed to; Semi-open type access rights refer to these personnel need be allowed to access rear may have access to user profile; Restricted type access rights refer to and do not allow this personnel's calling party information.
Preferably, the content of this request access is the message request adding group.
Preferably, in the step of management access rights, personnel's initiation in described personal information logging modle is to the essential information of other staff in personnel amount in transmission group while the request of access of user profile and group, when the open authority of the content of the request access comprised according to this request of access and the access rights type of these personnel respond, also combine and this response is made to the statistics of the information of other staff in group.
The invention allows for a kind of access rights management system realizing aforementioned access right management method, this Rights Management System comprises interacting message module, user profile logging modle, personal information logging modle, arranges access rights type block and management access rights module, interacting message module, user profile logging modle, personal information logging modle all with management access rights model calling, access rights type block is set and is connected with user profile logging modle and personal information logging modle;
Wherein, this interacting message module is used for the message of the personnel's transmission in reception staff's information logging modle and is transmitted to management access rights module, or returns response message according to the response that management access rights module is made to the personnel initiating request of access; User profile logging modle is for every content in recording user information and contents attribute; Personal information logging modle is used for record's information and personnel's attribute; Access rights type block is set for arranging the open authority of every content in user profile, by the open authority records of setting in contents attribute, and to the personal information recorded in personal information logging modle conduct interviews permission type arrange, and by arrange class record in this personnel's attribute; Management access rights module is used for managing according to the access rights of information to user profile in user profile logging modle and personal information logging modle, when the personnel in personal information logging modle initiate the request of access to the user profile in user profile logging modle, management access rights module responds according to the open authority of the content of request access and the access rights type of these personnel.
Beneficial effect of the present invention:
1. the present invention is by the access rights type of the open authority that sets user information and personnel; and come managing user information and access personnel according to different open authorities and different access rights types; effectively prevent some information of user when allowing without user by other people access; achieve the safety management to user profile, protect the individual privacy of user.
2. the present invention is by carrying out query statistic to the information of other staff in group, facilitates user to understand the roughly situation of personnel in group, responds; In query statistic process, the information of these other staff can not arbitrarily be revealed simultaneously, ensure that the information security of other staff.
Accompanying drawing explanation
Fig. 1 is the process flow diagram of access rights management method of the present invention.
Fig. 2 is the structural representation of access rights management system of the present invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearly understand, below in conjunction with specific embodiment, and with reference to accompanying drawing, the present invention is described in more detail.But those skilled in the art know, the present invention is not limited to accompanying drawing and following examples.
Embodiment 1:
A kind of right management method that the present invention proposes, as shown in Figure 1, the method comprises the following steps:
Step 1: the open authority set user information and access rights type is set: the open authority set user information comprises: arrange the open authority of every content in user profile, and be recorded in the contents attribute of user profile logging modle, content in user profile can be phone, the mailbox of binding, also can be the personal information such as the photo uploaded, this opening authority comprises following four kinds of situations: open completely, open completely some of the staff, need verify open, not opening.
Arrange access rights type to comprise: to the personnel in personal information logging modle conduct interviews permission type arrange, and be recorded in the personnel's attribute in personal information logging modle, this access rights type comprises opening access rights, semi-open type access rights and restricted type access rights, opening access rights refer to these personnel and confirm to get final product calling party information without the need to user, comprise and confirm just to draw in group by user without the need to user; Semi-open type access rights refer to these personnel needs user to confirm to agree to that rear may have access to user profile, comprises after needing user to confirm and can draw in group by user; Restricted type access rights refer to these personnel and do not allow calling party information, comprise and do not allow user to draw in the group at its place.
" completely open to some of the staff " wherein can be set to the personnel's opening completely to opening access rights and semi-open type access rights.
Step 2: the request of access to user that the personnel in reception staff's information logging modle initiate, this request comprises the content of request access;
Step 3: management access rights: the open authority of inquiring about the content of this request access, if opening completely, then these personnel may have access to the content of this request access; If not opening, then these personnel can not access the content of this request access; If to some of the staff's opening completely, inquire about the personnel attribute of these personnel in personal information logging modle to obtain the access rights type of these personnel, a1 is if the personnel of the personnel of opening access rights and semi-open type access rights, return any response message without the need to user, namely these personnel may have access to the content of this request access; B1 is if restricted type access rights, then these personnel can not access the content of this request access; If need opening be verified, inquire about the personnel attribute of these personnel in personal information logging modle to obtain the access rights type of these personnel, a2, if the personnel of opening access rights, returns any response message without the need to user, and namely these personnel may have access to the content of this request access; B2, if the personnel of semi-open type access rights, determines whether agree to or do not agree to that these personnel access the content of this request access by user; C2, personnel for restricted type access rights, user terminal, without the need to notifying that user confirms, namely returns the response of not grant access to these personnel.
Step 4: adjust former setting: when the open authority of needs adjustment, get back to step 1 and reset, and the open authority be recorded in the contents attribute of user profile logging modle is upgraded; When needs adjustment access rights type, get back to step 1 to reset, and the access rights type be recorded in personnel's attribute is upgraded, be convenient to revise at any time the personnel's attribute in the open authority of user profile and personal information logging modle like this, follow-up management access rights step operates according to the information after upgrading.
Embodiment 2:
Content for request access is the user name of user and head portrait when adding the request of group to invite, and adds following content in the step 3 of method step now only in the method step of embodiment 1.
Personnel's situation in group is understood for the ease of user; the essential information of other staff in personnel amount and group in group be sent to interacting message module while sending request the content of access; this essential information is only such as user name and head portrait, to protect the individual privacy of other staff.After the essential information receiving this request and other staff, the information of other staff in group whether is there is in personnel query information logging modle, if present, add up the access rights type of these people, statistics is informed user according to type and corresponding quantity, such as inform there are 5 people in 50 people in the personal information logging modle of user in customer group, wherein 2 people are the personnel of opening access rights, 2 people are the personnel of semi-open type access rights, and 1 people is the personnel of restricted type access rights; And because this 5 people is in the personal information logging modle of user, therefore can show name and the head portrait of this 5 people to user simultaneously.User, when determining, can understand the roughly situation of personnel in group, make the response of adhereing to group or not adhereing to group based on above-mentioned information.
Wherein in group, the essential information of other staff is only visible to user terminal, after user responds, namely delete this information.
Embodiment 3:
Be described the access rights management system realizing aforesaid access rights management method that the present invention proposes below in conjunction with Fig. 2, wherein identical with 2 with embodiment 1 content does not repeat them here.As shown in Figure 2, this Rights Management System comprises interacting message module 1, user profile logging modle 2, personal information logging modle 3, arranges access rights type block 4 and management access rights module 5.Interacting message module, user profile logging modle, personal information logging modle all with management access rights model calling, access rights type block is set and is connected with user profile logging modle and personal information logging modle.
Wherein, this interacting message module is used for the interacting message between different mobile terminal.
User profile logging modle is for every content in recording user information and contents attribute.
Personal information logging modle is used for record's information and personnel's attribute.
Access rights type block is set for arranging the open authority of every content in user profile, by the open authority records of setting in contents attribute; And to the personal information recorded in personal information logging modle conduct interviews permission type arrange, and by arrange class record in this personnel's attribute.
Management access rights module is used for managing the access rights of user profile, when the personnel in personal information logging modle initiate the request of access to user profile, management access rights module responds according to the open authority of content of access and the access rights type of these personnel.
Above, embodiments of the present invention are illustrated.But the present invention is not limited to above-mentioned embodiment.Within the spirit and principles in the present invention all, any amendment made, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (6)
1. an access rights management method, is characterized in that, the method comprises the following steps:
The open authority set user information and the step of access rights type: the open authority of every content in user profile is arranged, and be recorded in the contents attribute of user profile logging modle; Access rights type is arranged to the personnel in personal information logging modle, and the type is recorded in the personnel's attribute in personal information logging modle;
Receive the step of request of access: when the personnel in personal information logging modle initiate the request of access to user, receive this request of access, this request of access comprises the content of request access;
The step of management access rights: the open authority of content and the access rights type of these personnel of the request access comprised according to this request of access respond;
Adjust the step of former setting: when needing the open authority of Suitable content, the step of the open authority set user information described in returning resets, and by the open authority records that resets in information attribute; When needing the access rights type of adjustment personnel, returning the described step that access rights type is set and resetting, and by the access rights class record that resets in personnel's attribute.
2. access rights management method according to claim 1, it is characterized in that, the open authority of the described content according to this request access and the access rights type of these personnel respond the judgement of open authority of middle content prior to the judgement of the access rights type of these personnel.
3. access rights management method according to claim 2, it is characterized in that, this access rights type comprises opening access rights, semi-open type access rights and restricted type access rights, and opening access rights refer to these personnel and get final product calling party information without the need to being allowed to; Semi-open type access rights refer to these personnel need be allowed to access rear may have access to user profile; Restricted type access rights refer to and do not allow this personnel's calling party information.
4. access rights management method according to claim 3, is characterized in that, the content of this request access is the message request adding group.
5. access rights management method according to claim 4, it is characterized in that, in the step of management access rights, personnel's initiation in described personal information logging modle is to the essential information of other staff in personnel amount in transmission group while the request of access of user profile and group, when the open authority of the content of the request access comprised according to this request of access and the access rights type of these personnel respond, also combine and this response is made to the statistics of the information of other staff in group.
6. one kind realizes the access rights management system of the access rights management method according to any one of claim 1-5, it is characterized in that, this Rights Management System comprises interacting message module, user profile logging modle, personal information logging modle, arranges access rights type block and management access rights module, interacting message module, user profile logging modle, personal information logging modle all with management access rights model calling, access rights type block is set and is connected with user profile logging modle and personal information logging modle;
Wherein, this interacting message module is used for the message of the personnel's transmission in reception staff's information logging modle and is transmitted to management access rights module, or returns response message according to the response that management access rights module is made to the personnel initiating request of access; User profile logging modle is for every content in recording user information and contents attribute; Personal information logging modle is used for record's information and personnel's attribute; Access rights type block is set for arranging the open authority of every content in user profile, by the open authority records of setting in contents attribute, and to the personal information recorded in personal information logging modle conduct interviews permission type arrange, and by arrange class record in this personnel's attribute; Management access rights module is used for managing according to the access rights of information to user profile in user profile logging modle and personal information logging modle, when the personnel in personal information logging modle initiate the request of access to the user profile in user profile logging modle, management access rights module responds according to the open authority of the content of request access and the access rights type of these personnel.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510698319.0A CN105404822B (en) | 2015-10-23 | 2015-10-23 | A kind of access rights management method and access rights management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510698319.0A CN105404822B (en) | 2015-10-23 | 2015-10-23 | A kind of access rights management method and access rights management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105404822A true CN105404822A (en) | 2016-03-16 |
| CN105404822B CN105404822B (en) | 2018-05-15 |
Family
ID=55470305
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510698319.0A Active CN105404822B (en) | 2015-10-23 | 2015-10-23 | A kind of access rights management method and access rights management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105404822B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110795759A (en) * | 2019-10-24 | 2020-02-14 | 广州心语心伴互联网信息服务有限公司 | Privacy protection method and system |
| CN110955842A (en) * | 2019-12-03 | 2020-04-03 | 支付宝(杭州)信息技术有限公司 | Abnormal access behavior identification method and device |
| CN114726662A (en) * | 2022-04-07 | 2022-07-08 | 维沃移动通信有限公司 | Group chat session management method and device, electronic equipment and readable storage medium |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101534207A (en) * | 2009-04-13 | 2009-09-16 | 腾讯科技(深圳)有限公司 | Group joining system and group joining method |
| CN102253952A (en) * | 2011-01-14 | 2011-11-23 | 北京开心人信息技术有限公司 | Method and system for protecting privacy of users in social network |
| CN102902935A (en) * | 2012-09-26 | 2013-01-30 | 广东欧珀移动通信有限公司 | Mobile terminal privacy protection method and device |
| CN103391273A (en) * | 2012-05-08 | 2013-11-13 | 孙玮 | Method and device for controlling access authority of internet website user information |
| CN103391237A (en) * | 2012-05-08 | 2013-11-13 | 腾讯科技(深圳)有限公司 | Method and device for showing microblog messages |
| CN104216947A (en) * | 2014-08-08 | 2014-12-17 | 腾讯科技(深圳)有限公司 | Method and device for inviting user to join group |
| CN104852882A (en) * | 2014-02-13 | 2015-08-19 | 夷希数码科技(上海)有限公司 | Method for protecting user privacies in network social contact |
-
2015
- 2015-10-23 CN CN201510698319.0A patent/CN105404822B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101534207A (en) * | 2009-04-13 | 2009-09-16 | 腾讯科技(深圳)有限公司 | Group joining system and group joining method |
| CN102253952A (en) * | 2011-01-14 | 2011-11-23 | 北京开心人信息技术有限公司 | Method and system for protecting privacy of users in social network |
| CN103391273A (en) * | 2012-05-08 | 2013-11-13 | 孙玮 | Method and device for controlling access authority of internet website user information |
| CN103391237A (en) * | 2012-05-08 | 2013-11-13 | 腾讯科技(深圳)有限公司 | Method and device for showing microblog messages |
| CN102902935A (en) * | 2012-09-26 | 2013-01-30 | 广东欧珀移动通信有限公司 | Mobile terminal privacy protection method and device |
| CN104852882A (en) * | 2014-02-13 | 2015-08-19 | 夷希数码科技(上海)有限公司 | Method for protecting user privacies in network social contact |
| CN104216947A (en) * | 2014-08-08 | 2014-12-17 | 腾讯科技(深圳)有限公司 | Method and device for inviting user to join group |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110795759A (en) * | 2019-10-24 | 2020-02-14 | 广州心语心伴互联网信息服务有限公司 | Privacy protection method and system |
| CN110955842A (en) * | 2019-12-03 | 2020-04-03 | 支付宝(杭州)信息技术有限公司 | Abnormal access behavior identification method and device |
| CN114726662A (en) * | 2022-04-07 | 2022-07-08 | 维沃移动通信有限公司 | Group chat session management method and device, electronic equipment and readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105404822B (en) | 2018-05-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103024061B (en) | Network communication contact book shared system and method | |
| KR100910604B1 (en) | Cell phone parental conrtol | |
| KR101590276B1 (en) | Controlling text messages on a mobile device | |
| CN102959922B (en) | Method, server and system for granting temporary access to electronic content | |
| US8369832B2 (en) | Systems and methods for managing information in mobile devices | |
| CN106302927A (en) | The voice call platform that two-way number is hidden | |
| US20130109362A1 (en) | Telephone call blocking | |
| TW200901716A (en) | Systems and methods for controlling service access on a wireless communication device | |
| CN105429933A (en) | Access method of network equipment in local area network, access equipment and system | |
| CN101393434A (en) | Stamp control device and system | |
| WO2011137931A1 (en) | Social network connections | |
| CN104158824A (en) | Method and system of network real name authentication | |
| CN103544752B (en) | A kind of wireless video access control system and its control method based on IGRS protocol | |
| WO2016165505A1 (en) | Connection control method and apparatus | |
| WO2021135602A1 (en) | Number privacy protection method, network device and computer storage medium | |
| CN105404822A (en) | Access permission management method and access permission management system | |
| CN105657712A (en) | Access control method and device of WiFi hotspot | |
| US20090049143A1 (en) | System and method for transmitting messages for a set of communication devices | |
| CN110324330A (en) | A kind of system and method for realizing internet and the transmission of public security intranet data | |
| US20110202668A1 (en) | Methods for Creating and Using a Telecommunications Link between Two Users of a Telecommunications Network | |
| US10462151B2 (en) | Temporary access of a user profile | |
| US8699996B1 (en) | Managing a mobile device's communications | |
| CN101730100B (en) | Supervisory method and supervisory entity of authorization service of identify providing entity | |
| US9402178B2 (en) | Paid instant message system and method for authenticating identities using a mobile telephone network | |
| CN106488449A (en) | A kind of management method of Wireless Telecom Equipment and Wireless Telecom Equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |