Search for a command to run...
Currently, educational centers are actively using information systems to organize and support the educational process in conditions of both full-time and distance learning. The expansion of the range of educational services and the growth in the volume of processed information, including personal data of students and employees, educational, organizational and financial information, lead to increased requirements for information security ensuring. This work is devoted to the issues of information security ensuring in the information system of the training center based on access rights management. The paper highlights the main groups of data to be stored and processed in the process of educational services providing. Special attention is paid to the architecture of the information system based on the client-server principle. The interaction features of the components system and the role of the server part in the mechanism implementation of information protecting and access control to resources are considered. A significant part of the work is devoted to the system security issues and the organization of user access levels. A role-based access control model is described that allows you to differentiate user rights in accordance with their functional responsibilities. Access to the system functionality is implemented using two consecutive stages: authentication and authorization procedures. Logical separation of data, the normalized structure of tables, the use of identifiers instead of personal data, as well as the use of integrity restrictions can increase the level of database security and reduce the risks of leakage, distortion and unauthorized change of information. It has been shown that the application of the principle of least privileges and access control at the level of software interfaces contribute to reducing the risks of unauthorized access and increasing the reliability of the system.