AUTOMATION ARCHITECTURE OF AUTOMATED SYSTEMS Russian patent published in 2020 - IPC G06F21/53 

FIELD: physics.

SUBSTANCE: invention relates to computer engineering. Disclosed is a security architecture which implements authorization control, comprising: a computing device comprising at least one processor, input and output facilities interacting with at least one processor, and a storage medium comprising an operating system and a plurality of instructions executable on at least one processor; where the data medium also contains a security subsystem, executed by means of at least one processor, which during execution implements: a security server which enables to apply rules from a plurality of rules defined within one or more security policies, to parameters from the security context to make a verdict determining whether the action requested by the entity is allowed, where each security policy corresponds to a separate interface; multiple gateways intended for interaction with security server, where each gateway from a plurality of gateways corresponds to only one entity from a plurality of entities, and where a plurality of gateways enables to track requested actions on the side of corresponding entities, and for each requested action to determine a security context, determine an applicable security policy for the requested action based on a defined security context and request a verdict from the security server through an interface corresponding to the applicable security policy; and means of interaction of system components, connecting plurality of gateways and plurality of entities, designed to allow or prohibit the requested entity action based on the verdict received by the corresponding gateway from the security server.

EFFECT: technical result consists in improvement of information security of automated systems by dividing responsibility for calculating security verdict based on given policies and application of this verdict.

14 cl, 6 dwg