CN114491491A - Resource access management method of systematized avionics system - Google Patents

Resource access management method of systematized avionics system Download PDF

Info

Publication number
CN114491491A
CN114491491A CN202111421416.7A CN202111421416A CN114491491A CN 114491491 A CN114491491 A CN 114491491A CN 202111421416 A CN202111421416 A CN 202111421416A CN 114491491 A CN114491491 A CN 114491491A
Authority
CN
China
Prior art keywords
resource
access
platform
resources
access control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111421416.7A
Other languages
Chinese (zh)
Inventor
王智宇
郑学理
王金岩
周庆
王云辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Aeronautical Radio Electronics Research Institute
Original Assignee
China Aeronautical Radio Electronics Research Institute
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Aeronautical Radio Electronics Research Institute filed Critical China Aeronautical Radio Electronics Research Institute
Priority to CN202111421416.7A priority Critical patent/CN114491491A/en
Publication of CN114491491A publication Critical patent/CN114491491A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/953Querying, e.g. by the use of web search engines
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Automation & Control Theory (AREA)
  • Data Mining & Analysis (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a resource access management method of a systematized avionics system, which comprises the following steps: step 1, multi-platform network resource access control is carried out, and resource access control is carried out on a systematized avionic system to form an inter-aircraft network access resource library; step 2, performing resource access control on the single-platform avionics system, comprising: performing resource driving and adaptive conversion on the single platform access resource, and performing resource access control on the access resource; performing resource access control on a service layer in the single-platform avionic system, wherein an available resource list is configured in an access layer of the single-platform avionic system; and 3, maintaining the available resource list, namely maintaining the available resource list of each single-platform avionic system in the systematized avionic system, and providing the latest information of the callable resources for a service layer. The technical scheme provided by the embodiment of the invention solves the problem of resource access and management aiming at the network resources among the aircrafts of a plurality of airborne platforms.

Description

Resource access management method of systematized avionics system
Technical Field
The present invention relates to, but not limited to, the field of resource access technologies, and in particular, to a resource access management method for a systematized avionics system.
Background
The open architecture is an architecture that has the portability and tailorability of application systems, interoperability between node machines on the network, and ease of software availability from multiple parties.
The access layer of the systematized avionic system adopting the open system architecture mainly realizes access control management of resources such as internal and external sensors, weapons, processors, memories, I/O and the like of the aircraft, provides point-to-point interconnection encapsulation adaptation and resource management for the resources, and realizes adaptation agent and access control of heterogeneous/homogeneous resources.
At present, most resource access modes of a system avionics system are single airborne platform resource access modes, and the single airborne platform resource access modes cannot be transplanted to access and management of inter-aircraft network resources of multiple airborne platforms, so that the problem of resource access and management still exists for the inter-aircraft network resources of the multiple airborne platforms. .
Disclosure of Invention
The purpose of the invention is as follows: the embodiment of the invention provides a resource access management method of a systematized avionic system, which aims to solve the problem of resource access and management aiming at the network resources among aircrafts of a plurality of airborne platforms.
The technical scheme of the invention is as follows: the embodiment of the invention provides a resource access management method of a systematized avionics system, which comprises the following steps:
step 1, multi-platform network resource access control, comprising: performing resource access control on the systematized avionic system to form an inter-aircraft network access resource library;
step 2, single platform resource access control, namely resource access control is carried out on the single platform avionics system, and the method comprises the following steps: performing resource driving and adaptive conversion on the single platform access resource, and performing resource access control on the access resource; and performing resource access control on a service layer in the single-platform avionic system; the access layer of the single-platform avionics system is provided with an available resource list;
step 3, maintaining the available resource list, including: and maintaining an available resource list of each single-platform avionic system in the systematized avionic system, and providing latest available resource information for a service layer.
Optionally, in the resource access management method of the architected avionics system as described above, the step 1 includes:
a single aircraft performs controlled access to the inter-machine network access resources by listening to network access requests of the inter-machine network and forming or updating an inter-machine network access resource pool.
Optionally, in the resource access management method of the architected avionics system, the step 1 specifically includes:
step 11, access monitoring is carried out, wherein a network access request from a network layer in the single-platform avionics system is monitored, and the received network access request is used as the input of access control;
step 12, access control, namely analyzing and searching the received network access request, generating query request information according to the access request information obtained by analyzing and searching, searching and querying in the inter-machine network access resource library by adopting the query request information to obtain a query result, performing matching calculation on the access request information and the query result, and judging the legality of the network access request;
step 13, authentication and authorization, according to the judgment result of the access control on the network access request validity, the legal network access request is authenticated and authorized, and a security access key is issued, so that the inter-machine network access resource requested by the network access request with the security access key is stored in the inter-machine network access resource library.
Optionally, in the resource access management method of the system-based avionics system as described above,
the inter-machine network access resource library is used for providing query support for query request information, storing accessed legal inter-machine network access resources, and pushing the accessed legal inter-machine network access resources to an available resource list of an access layer in each single-platform avionic system in real time so as to enable a service layer to call the network resources.
Optionally, in the resource access management method of the architected avionics system as described above, the step 2 includes two parts:
in the first part, an access layer of a single-platform avionic system performs resource driving and adaptive conversion on access resources in a resource layer to form a single-platform resource access request, and judges and controls the legality of the requested single-platform access resources by combining resource access control according to a search result of inquiring the single-platform resource access request in an access control rule base, so that the legal single-platform access resources are pushed to an available resource list and an access control rule base;
and in the second part, an access layer of the single-platform avionic system performs resource access control on access resources in a service layer to form a single-platform resource access request, judges the legality of the accessed single-platform access resources according to the query search result of the single-platform resource access request in an access control rule base, performs use management on the legal accessible resources, and pushes the legal accessible resources to an available resource list and an access control rule base.
Optionally, in the resource access management method of the system-based avionics system as described above,
the access control rule base is used for providing inquiry search in the process of judging the legality of the resource access request of the single platform by the resource access control and forming a new access control rule through reasoning and learning;
and the access control rule base is used for providing inquiry search in the process of judging the legality of the resource access request of the single platform by the resource access control and forming a new access control rule through reasoning and learning.
Optionally, in the resource access management method of the architected avionics system as described above, the step 3 includes:
and uniformly carrying out identification coding on all resources pushed to the available resource list according to the inter-machine network access resource library obtained in the step 1 and the single-platform access resources obtained in the step 2, thereby maintaining the resource information in the available resource list in real time.
Optionally, in the resource access management method of the architected avionics system, the step 3 specifically includes:
step 31, resource identification and classification, including: identifying the inter-aircraft network access resources, the single-platform access resources and the single-platform access resources of the systematized avionic system;
step 32, storing the resource code, including: uniformly identifying and coding all resources pushed to the available resource list, and storing the resources in a resource library list according to the link type, the sensor type and the weapon type;
step 33, resource organization aggregation, including: the method comprises the steps of analyzing a legal single-platform resource access request, organizing and aggregating the analysis result of the access request, selecting required resource information in a resource library list based on the organization and aggregation result of the request, organizing and aggregating the selected resource information to form an accessible resource, and pushing the accessible resource to a service layer through resource access control.
The invention has the beneficial effects that: the embodiment of the invention provides a resource access management method of a systematized avionic system, which aims at the problem of resource access management and provides three strategies, including multi-platform network resource access control, single-platform resource access control and available resource list maintenance; the resource access management method is based on access control of a single airborne avionics system, and combined with access control rule base and available resource list maintenance, research on a systematized avionics system resource access management method is developed, and the resource encapsulation, adaptation and management capabilities are enhanced. The resource access management method provided by the embodiment of the invention is provided for the inter-machine network and platform resource access process of the systematized avionic system, and through the three strategies, the inter-machine network of the systematized avionic system has the resource access management capability, powerful support is provided for the encapsulation, adaptation and management research of resources, the defects of the existing avionic system resource access management research are filled, and the research foundation is provided for the next generation of airplanes in the aspect of avionic system resource access management design. In the technical scheme of the invention, in the process of resource access management, the access control of resources is carried out with a resource layer through a universal resource interface, and available resource information is provided for a service layer through a resource access control function; in addition, the network layer is provided with access control capability through the access control function of the systematized avionic system.
Drawings
The accompanying drawings are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate embodiments of the invention and together with the example serve to explain the principles of the invention and not to limit the invention.
Fig. 1 is a flowchart of a resource access management method of an architected avionics system according to an embodiment of the present invention;
FIG. 2 is a flow chart of a multi-platform hierarchy access control process in an embodiment of the present invention;
FIG. 3 is a flowchart of a single platform resource access control process in an embodiment of the present invention;
FIG. 4 is a flowchart of the maintenance of a list of available resources in an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that the embodiments and features of the embodiments in the present application may be arbitrarily combined with each other without conflict.
The steps illustrated in the flow charts of the figures may be performed in a computer system such as a set of computer-executable instructions. Also, while a logical order is shown in the flow diagrams, in some cases, the steps shown or described may be performed in an order different than here.
As described in the above background art, most of the resource access methods of the current architectural avionics systems are single airborne platform resource access methods, and the single airborne platform resource access methods cannot be transplanted to the access and management of the inter-aircraft network resources of multiple airborne platforms.
Therefore, the embodiment of the invention provides a resource access management method of a systematized avionic system, aiming at the problems of resource access and management of the network resources among aircrafts of a plurality of airborne platforms.
The following specific embodiments of the present invention may be combined, and some descriptions of the same or similar concepts or processes may be omitted for some embodiments.
Fig. 1 is a flowchart of a resource access management method for an architected avionics system according to an embodiment of the present invention. Before specifically describing the implementation process of the resource access management method for the systematized avionic system provided by the embodiment of the invention, the relation of each layer in the systematized avionic system is described.
The access layer of the architected avionics system provides point-to-point interconnected encapsulation adaptation and resource management for resources. As shown in fig. 1, the access stratum includes an onboard resource access portion and a cyberspace resource access portion.
a) The on-board resource access means: adaptive access and access control to sensors, weapons, networks, storage and computing resources in a single airborne avionics system;
b) network space resource access refers to: adaptive access and access control to networked sensors, weapons, networks, storage and computing resources in the systematized avionics system.
The access layer of the systematized avionics system has the following functions:
a) resource plug and play
The access layer design of the systematized avionic system is based on the concept and principle of an open system architecture (SOA), a service-oriented software architecture design mode is adopted, based on a universal resource interface standard, and through resource driving, adaptive conversion and access control management of resources of the access layer, the plug and play of the systematized avionic system resources are realized, the latest available resources are provided for the service layer in real time, the resources provided by the access layer are integrated, integrated and called by the service layer, and namely the access layer has the plug and play characteristic of the avionic resources.
b) Adaptive access and access
In the access control flow and the access control flow of an access layer in the systematized avionics system, the access control rule base and the access control rule base form a new access control rule and an access control rule in a self-adaptive manner through reasoning and learning according to a pre-loaded preset access rule and a pre-loaded preset access rule as well as a newly-added access resource and an access request in the operation process, so that the access layer has self-adaptive access and access characteristics.
c) Flexible expansion
The access layer in the systematized avionic system performs uniform access authentication and access control on accessed resources, the resources are packaged according to standard interfaces, the access control system of a single airplane adopts a universal access flow, the access resource library has larger resource information storage capacity and rich resource type identification capacity, the access layer of the advanced avionic system supports flexible access of more types and a larger number of resources, and the access layer has the characteristic of flexible expansion.
According to the resource access management method of the systematized avionic system, provided by the embodiment of the invention, three strategies are provided aiming at the problem of resource access management, wherein the three strategies comprise multi-platform network resource access control, single-platform resource access control and available resource list maintenance; through the three strategies, the inter-machine network of the systematized avionic system has the access management capability on resources, and support is provided for the encapsulation, adaptation and management of the resources. The resource access management method specifically comprises the following execution steps:
step 1, multi-platform network resource access control, comprising: performing resource access control on the systematized avionic system to form an inter-aircraft network access resource library;
step 2, single platform resource access control, namely resource access control is carried out on the single platform avionics system, and the method comprises the following steps: performing resource driving and adaptive conversion on the single platform access resource, and performing resource access control on the access resource; and performing resource access control on a service layer in the single-platform avionic system; as shown in fig. 1, the access stratum of the single-platform avionics system is configured with a list of available resources.
Step 3, maintaining the available resource list, including: and maintaining an available resource list of each single-platform avionic system in the systematized avionic system, and providing latest available resource information for a service layer.
In an embodiment of the present invention, the specific implementation of step 1 may include:
a single aircraft performs controlled access to the inter-machine network access resources by listening to network access requests of the inter-machine network and forming or updating an inter-machine network access resource pool.
As shown in fig. 1, in practical application of the embodiment of the present invention, the specific implementation process of step 1 may include the following steps:
step 11, access monitoring is carried out, wherein a network access request from a network layer in the single-platform avionics system is monitored, and the received network access request is used as the input of access control;
step 12, access control, namely, analyzing and searching the received network access request, generating query request information according to the access request information obtained by analyzing and searching, searching and querying in an inter-machine network access resource library by adopting the query request information to obtain a query result, performing matching calculation on the access request information and the query result, and judging the legality of the network access request;
step 13, authentication and authorization, namely, according to the judgment result of the access control on the legality of the network access request, authenticating and authorizing the legal network access request, and releasing a security access key so as to store the inter-machine network access resource requested by the network access request with the security access key in an inter-machine network access resource library.
It should be noted that the inter-machine network access resource library in the embodiment of the present invention may provide query support for query request information, and is configured to store the accessed legal inter-machine network access resources, and push the accessed legal inter-machine network access resources to an available resource list of an access layer in each single-platform avionics system in real time, so as to enable a service layer to call network resources.
In the embodiment of the present invention, the single-platform resource access control in step 2 may include the following two aspects.
On one hand, an access layer of the single-platform avionics system performs resource driving and adaptive conversion on access resources in the resource layer (the step realizes identification access of the access resources), a single-platform resource access request is formed, and according to the query search result of the single-platform resource access request in an access control rule base, the legality of the requested single-platform access resources is judged and controlled by combining resource access control, so that the legal single-platform access resources are pushed to an available resource list and an access control rule base.
On the other hand, the access layer of the single-platform avionics system performs resource access control on the access resources in the service layer to form a single-platform resource access request, judges the legality of the single-platform access resources accessed by the access layer according to the query search result of the single-platform resource access request in the access control rule base, performs use management on the legal accessible resources, and pushes the legal accessible resources to the available resource list and the access control rule base.
It should be noted that the access control rule base in the embodiment of the present invention may provide query and search in the process of determining the validity of the single-platform resource access request by resource access control, and form a new access control rule through inference and learning.
In addition, the access control rule base in the embodiment of the invention is used for providing query search in the process of judging the legality of the resource access request of the single platform by the resource access control and forming a new access control rule by reasoning and learning.
In an embodiment of the present invention, the specific implementation of step 3 may include:
and uniformly carrying out identification coding on all resources pushed to the available resource list according to the inter-machine network access resource library obtained in the step 1 and the single-platform access resources obtained in the step 2, thereby maintaining the resource information in the available resource list in real time.
In practical application of the embodiment of the present invention, the specific implementation process of step 3 may include the following steps:
step 31, resource identification and classification, including: identifying the inter-aircraft network access resources, the single-platform access resources and the single-platform access resources of the systematized avionic system;
step 32, resource coding storage, including: uniformly identifying and coding all resources pushed to the available resource list, and storing the resources in a resource library list according to the link type, the sensor type and the weapon type;
step 33, resource organization aggregation, including: the method comprises the steps of analyzing a legal single-platform resource access request, organizing and aggregating the analysis result of the access request, selecting required resource information in a resource library list based on the organization and aggregation result of the request, organizing and aggregating the selected resource information to form an accessible resource, and pushing the accessible resource to a service layer through resource access control.
According to the resource access management method of the systematized avionic system, provided by the embodiment of the invention, three strategies are provided aiming at the problem of resource access management, wherein the three strategies comprise multi-platform network resource access control, single-platform resource access control and available resource list maintenance; the resource access management method is based on access control of a single airborne avionic system, and is combined with access control rule base and available resource list maintenance to develop research of a systematized avionic system resource access management method and enhance the packaging, adaptation and management capabilities of resources. The resource access management method provided by the embodiment of the invention is provided for the resource access process of the system-based avionic system inter-machine network and the platform, and through the three strategies, the system-based avionic system inter-machine network has the resource access management capability, powerful support is provided for the resource encapsulation, adaptation and management research, the defects of the existing avionic system resource access management research are filled, and the research basis is provided for the next generation of airplanes in the aspect of avionic system resource access management design. In the technical scheme of the invention, in the process of resource access management, the access control of resources is carried out with a resource layer through a universal resource interface, and available resource information is provided for a service layer through a resource access control function; in addition, the network layer is provided with access control capability through the access control function of the systematized avionic system.
The following describes in detail embodiments of a resource access management method for a systematized avionics system according to embodiments of the present invention with reference to some specific embodiments.
The specific process of resource access management of the systematized avionics system shown in fig. 1 is as follows:
the method comprises the following steps that (1) multi-platform network system level access control is carried out, and the flow realizes higher security level inter-machine network access control access by monitoring an access request of an inter-machine network;
the single-platform resource access control of the process (2) realizes the adaptive access control of resources and the resource access control function of a service layer through resource driving and adaptive conversion;
maintaining an available resource list in the process (3), wherein the process realizes uniform identification coding of access resources based on the inter-machine network resource information and the platform resource access information in the step (2), maintains the access resources in real time, and provides the latest resource information-adjustable node access for a service layer;
as shown in fig. 2, the specific flow of the multi-platform hierarchy access control is as follows:
the process (1) comprises the steps of monitoring a network access request from a network layer and pushing received access request information to access control in real time;
and (2) access control, wherein the access request information is received by the flow analysis search, the information is analyzed to generate query request information, the search query is carried out in the inter-machine network resource library, the matching calculation is carried out on the access request information and the query result after the query search is finished, the legality of the access network is judged, and the legal network access information is pushed to the authentication authorization and stored in the inter-machine network resource library. (ii) a
The flow (3) is an inter-machine network resource library, the flow realizes the support of searching and inquiring the access request information and the storage of the accessed legal network resource information, and the accessed legal network resource information is pushed to an available resource list maintenance submodule of the platform resource access control module in real time for the calling of the network resources by the service layer;
flow (4) authentication authorization: the process authenticates and authorizes the legal network access request according to the information pushed by the access control submodule, and issues the security access key.
As shown in fig. 3, the specific flow of the single-platform resource access control is as follows:
the process (1) comprises resource driving and adaptation conversion, wherein the process realizes identification access to access resources and sends access request information to resource access control;
the resource access control of the process (2) realizes the judgment and control of the legality of the access resource in the platform and pushes the legal access resource information to an available resource list and an access control rule base;
the flow (3) is accessed into the control rule base, the flow realizes the support of the query and search of the access request rule from the resource access control submodule, and simultaneously forms a new access control rule through reasoning and learning;
the process (4) can maintain the available resource list, realize the unified identification coding of the access resource, maintain the access resource in real time and provide the latest information of the available resource for a service layer;
the process (5) resource access control, the process realizes the judgment of the legality of the resource access request, the use management of the accessible resources and the pushing of the legal resource access information to the available resource list and the access control rule base;
and the process (6) accesses the control rule base, supports the query search of the access request rule from the resource access control submodule, and forms a new access control rule through inference learning.
As shown in fig. 4, the specific steps of maintaining the available resource list are as follows:
identifying and classifying resources in the process (1), wherein the process is used for accessing network resource information and platform resource information among machines;
and (3) resource coding storage of the flow (2): after the process access resource is coded, storing the coded process access resource in a resource library list module according to the types of links, sensors, weapons and the like;
and (3) resource organization and aggregation: the process analyzes legal resource access information, organizes and aggregates resources according to analysis results, selects required resource information in a resource library list based on the resource access analysis information, organizes and aggregates the selected resources to form accessible resources, and pushes the accessible resources to a service layer through a resource access control module.
Although the embodiments of the present invention have been described above, the above description is only for the convenience of understanding the present invention, and is not intended to limit the present invention. It will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.

Claims (8)

1. A resource access management method of a systematized avionics system is characterized by comprising the following steps:
step 1, multi-platform network resource access control, comprising: performing resource access control on the systematized avionic system to form an inter-aircraft network access resource library;
step 2, single platform resource access control, namely resource access control is carried out on the single platform avionics system, and the method comprises the following steps: performing resource driving and adaptive conversion on the single platform access resource, and performing resource access control on the access resource; and performing resource access control on a service layer in the single-platform avionic system; the method comprises the steps that an available resource list is configured in an access layer of the single-platform avionic system;
step 3, maintaining the available resource list, including: and maintaining an available resource list of each single-platform avionic system in the systematized avionic system, and providing latest available resource information for a service layer.
2. The resource access management method of the architected avionics system according to claim 1, wherein the step 1 comprises:
a single aircraft performs controlled access to the inter-machine network access resources by listening to network access requests of the inter-machine network, and forms or updates a library of inter-machine network access resources.
3. The resource access management method of the architected avionics system according to claim 2, wherein the step 1 specifically comprises:
step 11, access monitoring is carried out, wherein a network access request from a network layer in the single-platform avionics system is monitored, and the received network access request is used as the input of access control;
step 12, access control, namely analyzing and searching the received network access request, generating query request information according to the access request information obtained by analyzing and searching, searching and querying in the inter-machine network access resource library by adopting the query request information to obtain a query result, performing matching calculation on the access request information and the query result, and judging the legality of the network access request;
and step 13, authenticating and authorizing, namely authenticating and authorizing the legal network access request according to the judgment result of the access control on the legality of the network access request, and releasing a security access key so as to store the inter-machine network access resource requested by the network access request with the security access key in an inter-machine network access resource library.
4. The method for resource access management of a system-based avionics system according to claim 3,
the inter-aircraft network access resource library is used for providing query support for query request information, storing accessed legal inter-aircraft network access resources, and pushing the accessed legal inter-aircraft network access resources to an available resource list of an access layer in each single-platform avionic system in real time so as to enable a service layer to call the network resources.
5. The method for resource access management of the architected avionics system according to claim 4, wherein the step 2 comprises two parts:
in the first part, an access layer of a single-platform avionic system performs resource driving and adaptive conversion on access resources in a resource layer to form a single-platform resource access request, and judges and controls the legality of the requested single-platform access resources by combining resource access control according to a search result of inquiring the single-platform resource access request in an access control rule base, so that the legal single-platform access resources are pushed to an available resource list and an access control rule base;
and in the second part, an access layer of the single-platform avionic system performs resource access control on access resources in a service layer to form a single-platform resource access request, judges the legality of the accessed single-platform access resources according to the query search result of the single-platform resource access request in an access control rule base, performs use management on the legal accessible resources, and pushes the legal accessible resources to an available resource list and the access control rule base.
6. The method for resource access management of a system-based avionics system according to claim 5,
the access control rule base is used for providing inquiry search in the process of judging the validity of the resource access request of the single platform under the resource access control and forming a newly added access control rule through inference and learning;
and the access control rule base is used for providing inquiry search in the process of judging the legality of the single-platform resource access request by the resource access control and forming a new access control rule through reasoning and learning.
7. The method for resource access management of the architected avionics system according to claim 6, wherein the step 3 comprises:
and (3) uniformly carrying out identification coding on all resources pushed to the available resource list according to the inter-machine network access resource library obtained in the step (1) and the single-platform access resource obtained in the step (2), thereby maintaining the resource information in the available resource list in real time.
8. The resource access management method of the architected avionics system according to claim 7, wherein the step 3 specifically comprises:
step 31, resource identification and classification, including: identifying the inter-aircraft network access resources, the single-platform access resources and the single-platform access resources of the systematized avionic system;
step 32, storing the resource code, including: uniformly identifying and coding all resources pushed to the available resource list, and storing the resources in a resource library list according to link types, sensor types and weapon types;
step 33, resource organization aggregation, including: the method comprises the steps of analyzing a legal single-platform resource access request, organizing and aggregating resources of an analysis result of the access request, selecting required resource information in a resource library list based on the organization and aggregation result of the request, organizing and aggregating the selected resource information to form an accessible resource, and pushing the accessible resource to a service layer through resource access control.
CN202111421416.7A 2021-11-26 2021-11-26 Resource access management method of systematized avionics system Pending CN114491491A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111421416.7A CN114491491A (en) 2021-11-26 2021-11-26 Resource access management method of systematized avionics system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111421416.7A CN114491491A (en) 2021-11-26 2021-11-26 Resource access management method of systematized avionics system

Publications (1)

Publication Number Publication Date
CN114491491A true CN114491491A (en) 2022-05-13

Family

ID=81491901

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111421416.7A Pending CN114491491A (en) 2021-11-26 2021-11-26 Resource access management method of systematized avionics system

Country Status (1)

Country Link
CN (1) CN114491491A (en)

Similar Documents

Publication Publication Date Title
CN107948203B (en) A kind of container login method, application server, system and storage medium
US20130125217A1 (en) Authorization Control
CN111865895B (en) Data secret transmission method and system based on cloud platform
KR20220088306A (en) Automatic escalation of trust credentials
CN109543448A (en) HDFS file access authority control method, equipment and storage medium
CN113691615A (en) Service request processing method, system and data gateway
CN118171297A (en) Interface authority control method and device, storage medium and electronic equipment
US7464070B2 (en) Database query operations using storage networks
CA2426118A1 (en) Mobile programs
CN107992340A (en) System for distributed cluster system exits method and distributed cluster system
CN114491491A (en) Resource access management method of systematized avionics system
CN104753902B (en) A kind of operation system verification method and verifying device
CN107181747A (en) A kind of Handle resolution systems comprising top mode
CN116340278A (en) Mobile Internet of things-oriented block chain space data authenticable sharing method
CN114124466B (en) Lightweight application ecological development system oriented to Internet of things
CN114969722A (en) Government affair data privacy calculation system supporting multiple data types
CN109542816B (en) Service bus construction method based on distributed system
CN116070191A (en) Information processing method and device, storage medium, and program product
CN113590711A (en) High-elasticity extensible multi-chain data hierarchical shared storage system and method
CN109495432A (en) A kind of method for authenticating and server of anonymity account
US7606917B1 (en) Method, apparatus and system for principle mapping within an application container
CN101341467A (en) Utilizing component targets in defining roles in a distributed and integrated system or systems
CN116389103B (en) Role authority-based cloud primary micro-service distributed authentication method and system
CN116232655B (en) Configuration application permission management method and system based on Internet of things cloud platform
CN115001780B (en) Access control method, device, equipment and readable storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination