Security: Function and Data Access Control

Companies require the ability to set up PLM function and data access control according to enterprise security policies. Security policies determine which person can access which functions under which conditions, and set data access authorizations.

As part of the ENOVIA VPM Multi-Discipline Collaboration Platform, the P&O, Security and Resource software provides a common solution compatible with the PLM V6 architecture to allow users to log onto Dassault Systèmes applications (in both interactive and batch mode) to work within a project and perform PLM function and data access control with the appropriate resources.

This means that the security context (single or multi-contexts) determines:

• which PLM functions can be accessed
• how PLM data can be accessed
• and which project resources can be used.

Persons logging onto the security context inherit the function and data access authorizations assigned to the context.

Security is entirely based on ENOVIA V6 access control mechanisms:

• function access control is implemented via policies, rules and commands
• data access control is implemented at attribute level via masks, and at business object level via policies and rules.

Policies and rules grant permissions to:

• persons
• organizations
• roles
• projects

and may be subject to security conditions referred to as filters.

The P&O, Security and Resource environment available at logon is referred to as the P&O ecosystem.