| With the development of computer science, different kinds of computer application systems are becoming increasingly complex, every aspect of a computer application system could suffer a security threat. Computer application system need to protect their resources, at present, the enterprise application systems are becoming increasingly complex, access control management of resources is becoming increasingly difficult. It is important to develop an easy to use, easy to expand user authentication and authorization management system for enterprises multi-user application systems.The research shows, at present, various user authentication and authorized management systems have some typical problems, such as the intense-coupling between enterprise application systems and user authentication and authorized management system, the absence of dynamic access control capability, the inconvenience of the administration of the system, etc. This paper studies these problems above.Firstly, this paper studies the reason why enterprise application systems intense-coupled with user authentication and authorized management system, also studies aspect-oriented programming and different kinds of authentication and authorization mechanisms, describes a new approach to develop user authentication and authorization system based on object-oriented programming and aspect-oriented programming technology.Secondly, this paper studies the various role-based access control models and administrative models, points out the shortcomings of these models, offer a new role-based access control model and a new role-based access control administrative model.Finally, this paper studies various enterprise design patterns, offers a new design of user authentication and authorization system based on the studies above, the design can be used in java multi-user enterprise application systems based on B/S structure. |
PDF Full Text Request