| With a rapid development of computer network technology, thedegree of office information in every industry is rising day by day.Currently, various types of information systems are used widely in everydepartment and enterprice. Although office information has brought greatconvenience to people, at the same time, it has also brought many securityrisks. Therefore, information security problem of system will get moreattention and become more important. Access control, as an important partof security management in most application systems, has gotten more andmore extensive research.The subject of this paper comes from the project of regional healthinformation platform, the main task of this paper is the research andimplementation of a unified access control system for the platformaccording to the actual needs of project.This paper has studied the role-based access control model in currentindustry and improved the model according to the characteristics ofregional health information platform. Then it introduced role group and forwarded the idea of using role group-based access control to achieve aunified authorization for users of platform, and achieved the managementof platform’s role group by using Web Services technology. After that itdivided different users into corresponding type and implemented user’sfiltering and hierarchical authority by user type. Then it introduced theentity of organization, and separated the authorization of institutionalusers, which simplifies the management of authorization. By using theaccess control policy of hiding menus and action items and combiningwith validating before operating, system security can be greatly improved.What’s more, it divided access objects into function menus and databasetables with access permissions for the purpose of improving thegranularity of access control. At last, designs and implements unifiedaccess control system for the platform.The design of access control system includes platform subsystemmanagement, user management, role and group management, permissionmanagement, resource management, log management, constraintmanagement, organization management, permission verification management and the design of database model. This paper elaborates onthe design of database tables of each functional module andimplementation of the main functional modules.The access control system is based on J2EE framework, uses theframework of Struts, Spring and Hibernate, combining with extensiblemarkup language. In the development process of the system, this papermakes full use of the advantages of the J2EE framework and other relatedtechnologies, which has achieved efficient development that ensured thestability of the system and improved the security of the informationplatform. |
PDF Full Text Request