Розроблення системи управління доступом до документів в АСДО для поліграфічних видавництв

Abstract

Проаналізовано основні засоби управління доступом до документів, на основі чого запропоновано систему управління доступом в автоматизованих системах документообігу (АСДО) для поліграфічних видавництв. Визначено, що для поліграфічних видавництв необхідною умовою для функціонування системи управління доступом до документів є встановлення рівнів таємності документів, впровадження засобів двофакторної ідентифікації користувачів, розроблення процедур моніторингу та правил роботи з документами. Запропоновано загальний принцип роботи системи захисту документів в АСДО для поліграфічних видавництв. The basic means of access control to electronic documents are analysed, on the basis of which the system of access control in automated document management systems (ADMS) for publishing houses is offered. The work on creating a system for document access control at a publishing house can be divided into three main areas: 1) the organization of work with documents and information contained in them; 2) the development of means of identifcation for all users of ADMS and methods of granting them certain powers; 3) ensuring the monitoring of the work of ADMS by the relevant security services. All areas of work with documents must be agreed in advance and prescribed in the security policy of the organization in the form of procedures for working with documents – from the beginning of their creation, working with them and to further destruction or archiving. The organization of work with documents begins at the stage of their creation, when the classifed information contained in the documents is determined and in accordance with it, each document is given a certain level of secrecy in the accompanying information to the document. The security services apply a certain level of protection to each document according to its level of secrecy. This process is carried out using the tools and procedures provided in the security policy of the organization (passwords, encryption, digital signature, etc.). The development of methods and means of identifying users of the organization begins with the creation of a new user profle in the document access control system. In accordance with the powers granted, users in the security system are granted a certain level of access to documents. All users of ADMS should be acquainted with the rules of work with documents and with the duties and responsibilities in case of their violations. Security services develop databases for documents and users, rules for user identifcation and authentication in ADMS and procedures for granting each entity of a publishing house a level of access to documents according to their level of secrecy. In the process of functioning of the publishing house, the security and access to documents services should systematically monitor the ADMS protection system for the presence of vulnerabilities and develop a strategy for the prompt resumption of its work in case of incidents.