Design And Implementation Of Double-deck Authority Management System Based On Role-based Access Control

With the worldwide spread of network, the enterprise information system has been widely used. However, the information security of the system is being challenged. The effective system authority control and management is the key to solve the problem.This dissertation conducts theoretical and practical discuss on this issue in accordance with the authority managemet system of Enterprise Security Process Management Platform .With widely-used Role-based Access Control (RBAC) as theoretical basis , this dissertation designs and implements a double-deck authority management system. The first layer is access control for entering the system module, while the second layer is resource operation control after entering the system module. Corresponded to the double-deck authority management, this dissertation analyzes the framework of the system with use cases and logical views, designs and implements the user management module, user groups and process permissions configuration module and login module. User management module allocates roles to different users to control their access permissions. User groups and process permissions configuration module assigns users to different user groups, and allocates process resource permissions based on different groups. Laboratory findings show that the functionality and effectiveness of this authority management system has met the original design requirements.