| 摘要 |
The present invention solves the problem of access control in a large data base with a large number of users by the use of a double log-in technique. Each data base client may have a number of individual users. Each application recorded for a given client has its own unique identity. To log-in to the data base, a user enters his identity and password, or PIN (personal identity number). Only a few functions and a limited amount of data can be accessed directly on a primary log-in. However, a secondary log-in is then carried out, concealed from the user. The user only knows his identity and PIN. On requesting a particular application, an application identity is generated from the users identity and application name, for which a randomly generated PIN is generated. This identity is then given the rights to perform all necessary functions for the application in question subject to any access limitations imposed on the user with regard to the application in question. |
