Product data is the enterprise core part of intellectual assets, companies in building the technology management information system must take full account of product data security. PDM/ PLM systems to provide enterprises with an information sharing platform, allowing different people, departments or even other related enterprises to easily share data and information to improve design efficiency and quality. PDM / PLM management module to provide access through authentication, access control, auditing, encryption and other technologies work together to ensure the product data access security.
In the PDM / PLM system construction, the use of PDM / PLM data security management technology to ensure the security of data sharing is very important, here PDM product data safety management methods in order to better understanding of PDM / PLM data security management.
PDM Data Security Management Principles PDM systems on the one hand by storing data encryption methods on the data stored in the data is encrypted, on the other hand is to ensure that the system of the user data security. Organization and management function module is the basis for rights management, as a PDM / PLM system users in the enterprise where all the technical departments every employee should notify the organization and management has been carried out in the register. Users, user groups, roles, form the PDM / PLM foundation for rights management units, each user / user groups / roles will be given access rules, users can access to meet the rules and conditions of access to the appropriate action, if they can not satisfy the condition, the user can not be the appropriate operation, the system automatically prompts the message.
Rights management system
PDM / PLM to manage product data classification, data access controls are based on class model to carry out control, rights management mechanism is mainly the following aspects:
1) static permissions. Static inherent authority is to give a user permissions to user groups, users, and roles entrusted to a certain degree of static access rules, users within a certain time can be carried out in accordance with the static permissions accordingly.
2) Dynamic permissions. Dynamic permissions are user groups, users and the role of carrying out a task operation, task arrives dynamically obtain the appropriate permissions, once the task is completed, the authority shall immediately be invalidated.
3) The independent authority. Self-authorization is Security Level for a number of important documents, only some of the members can create, created only the creator has a right to modify and view, instead of doing the work of the same nature of the role of staff can not have the same view and modify permissions.
4) The multi-level distribution of authority. Multi-level distribution of access permissions to the owner based on a certain rule, according to certain rules of their own competence assigned to other officers, but certain users may be temporarily assigned to the temporary permission.
5) The security level. Level of security is an object privilege level, low levels of personnel can not access the high level of personnel to create the data files. PDM / PLM data model and the user can type the security level to control, to ensure that no level of competence of personnel to access the data not the same.
Maintenance authority
Permissions maintenance is PDM / PLM systems management is very important to a work, for access and maintenance methods recommend the following:
1) someone to maintain. Small and Medium Enterprise Application PDM / PLM system that can by hand to maintain system privileges, and one person can manage system privileges; large enterprise or group-based enterprise applications, PDM / PLM system, a person's competence and management systems to maintain the heavy workload, hard to meet the requirements, can take a super system administrator, division administrator of the model to manage and maintain competence. PDM / PLM should be provided access management capabilities of multi-level distribution of the super system administrator responsible for the overall maintenance division is responsible for the system administrator user rights maintenance of the Department, through the division of responsibility and overall coordination of the management model, can make access to maintain more clear and simple.
2) developing permission to use the system. PDM / PLM system is running, it should be the development authority to use the system, management rights for, permission to change businesses. If the user does not have permission, through the application process to apply for permission to process, change the permission should also be carried out through the processes managed by the system to record the permissions to use and change processes, to facilitate traceability and management. |
