Ç¥ÁØÈ­ Âü¿©¾È³»

TTAÀÇ Ç¥ÁØÇöȲ

Ȩ > Ç¥ÁØÈ­ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ

Ç¥ÁعøÈ£ TTAK.KO-10.0754 ±¸Ç¥ÁعøÈ£
Á¦°³Á¤ÀÏ 2014-12-17 ÃÑÆäÀÌÁö 31
ÇѱÛÇ¥ÁØ¸í °³¹æÇü Ç÷§Æû¼­ºñ½º - Á¦7ºÎ : ¸ÖƼÅ׳ͽà º¸¾È ±¸Á¶
¿µ¹®Ç¥Áظí Open PlatformService - Part VII : Multitenancy Security Architecture
Çѱ۳»¿ë¿ä¾à º» Ç¥ÁØÀº OPS¿¡¼­ ¸ÖƼÅ׳ͽÃÀÇ º¸¾È ±¸Á¶¸¦ °èÁ¤(account)/»ç¿ëÀÚ(user), ÀÎÁõ(authentication), ±ÇÇÑ ºÎ¿©(authorization), °¨»ç(auditing), µ¥ÀÌÅÍ ¾Ïȣȭ¸¦ Áß½ÉÀ¸·Î ¼³¸íÇÏ°í ³×Æ®¿öÅ© º¸¾ÈÀ» ºÎ°¡ÀûÀ¸·Î ¼³¸íÇÏ°íÀÚ ÇÑ´Ù. À̸¦ À§ÇØ º» Ç¥ÁØ¿¡¼­´Â ¾×ƼºñƼ(activity), ¿ªÇÒ(role), ºÎ¿ªÇÒ(subrole)¸¦ Á¤ÀÇÇÏ°í À̵é°ú ÀÚ¿ø, ¼­ºñ½ºÀÇ »óÈ£ °ü°è¸¦ ¼³¸íÇÑ´Ù. ¶ÇÇÑ, Á¦¾ÈÇÏ´Â º¸¾È ±â´É¿¡ ´ëÀÀÇÏ´ÂOPS ÂüÁ¶ ¸ðµ¨ÀÇ ÄÄÆ÷³ÍÆ®¿Í °ü·Ã ±â´ÉÀ» º¸¿©ÁØ´Ù.
Âü°í·Î, ³×Æ®¿öÅ© º¸¾È ¹× µ¥ÀÌÅÍÀÇ ¾ÏȣȭÀÇ ¼¼ºÎÀûÀÎ ³»¿ëÀº ÀϹÝÀûÀ¸·ÎOPS°¡ ¼³Ä¡µÇ´Â ÀÎÇÁ¶ó½ºÆ®·°Ã³(Infrastructure)¿¡¼­ Á¦°øµÇ¹Ç·Î, º» Ç¥ÁØ¿¡¼­´Â OPS°¡ Á¦°øÇÏ´Â ±â´É¿¡ ´ëÇؼ­¸¸ ±â¼úÇÑ´Ù.
¿µ¹®³»¿ë¿ä¾à Focusing on account/user, authentication, authorization, auditing, and data encryption, it explains multitenancy security architecture in OPS and additionally describes a network security. For those, we define activity, role, and subrole, and then explain mutual relation among them and resources/services. In addition, we arrange component(s) of OPS and its function(s) which are relevant to the proposed security functions respectively.
Since the details of network security and data encryption in OPS are provided by the infrastructure which OPS are installed on, only OPS serving functions are described in this standard.
±¹Á¦Ç¥ÁØ
°ü·ÃÆÄÀÏ TTAK.KO-10.0754_[1].pdf TTAK.KO-10.0754_[1].pdf            

ÀÌÀü
´ÙÀ½