中圖分類號：TP391
文獻標(biāo)識碼：A
DOI： 10.19358/j.issn.2096-5133.2020.01.007
引用格式：文星。軟件定義邊界安全模型在電網(wǎng)企業(yè)系統(tǒng)中的應(yīng)用［J］。信息技術(shù)與網(wǎng)絡(luò)安全，2020,39（1）：38-41,49.

Application of software definition boundary security model in power grid enterprise system

Abstract： Aiming at the security problem of application system access in power grid enterprises under intranet environment,a user multidimensional data authentication model based on Software Defined Perimeter （SDP） is proposed in combination with traditional access control mechanism.Firstly,the shortcomings of access control model in current power grid enterprise application system are analyzed.Then,the attribute of trust is introduced into the existing model.According to the minimal authorization method,the corresponding relationship between each person and the company business system is established,and a secure soft boundary gateway with thousands of people and thousands of faces is created.Practical application and theoretical analysis show that the model can achieve the application that users can only see authorized access,and establish a new security architecture with strong trust,strong control and strong protection,which can effectively protect various application systems of power grid enterprises.

Key words : grid enterprise;access control;minimizing authorization;software definition boundary