earticle

영어

The Information of students who are the subjects in educational institution has been being used and recorded under the name of academic management. However, in relation to privacy protection, frequent misuse and abuse of the information has been occurred because their information is used imprudently without consent of the subjects. To prevent violating student’s privacy, we were required to build a personal information protection system which can block reckless access and give restrictively authority to a user who needs access. This paper attempts to apply role-based access control technology to academic affairs information system after researching the status of privacy protection of Chinese students through system of Yanbian University of Science & Technology. Moreover, this thesis introduced role-category and delegation-relations for privacy policy establishment, proposed information flow from the point of view of privacy protection, and established privacy policy to prevent the leaking of personal information caused by frequent delegation.