The Study On Techniques Of Description And Collection Of Active Web Pages Resources For Authorization Management

To improve the security of web pages and the realization of fine-grained authorization and access control of active web pages resources, collection and description of resources are the first problem to be solved. Collecting resources precisely and organizing them properly can provide much convenience for authorization management. They are the basis of fine-grained authorization and access control.Based on the special characters of active web pages, this dissertation studies the fine-grained description and collection of active pages resources in authorization management. The main work of this dissertation is as follows:1. Analyze the present research of active web pages resource management deeply. Based on the study of developed technique of active web pages, the problem exists in authorization and access control of web pages resources is studied. The present methods of describing and collecting web pages resources are analyzed. Main problem of managing active web pages in authorization management has been proposed.2. To the point of authorization and access control, a new definition of active web pages resources is provided and a method of describing active web pages generally is proposed. Based on Resource Description Framework (RDF), the dissertation provides a general descriptioin method for active web pages resources. This method defines the decription schema for both active pages and elements, which reflects their active characters and relationships with each other. It supports flexible and convenient authorization and fine-grained access control of resources.3. A model of collecting acive web pages in authorization management is proposed. Based on the Robot technique, the model extracts the special charactesr of active web pages by analyzing and calculating. The algorithm of obtaining parameters and valid changing factors of pages is provided and method of extracting resource elements contained in pages is discussed.4. Application of the method proposed in authorization and access control are analyzed. For the need of identification of resources, this dissertation designed a method of identifying the content of acive web pages. And a prelimitary solution for access control of active web pages is proposed.The application demonstrates that description method proposed for active web pages provides much convenience for authorization and simplifies the authorization operation. It supports fine-grained and precise authorization. The settlement of identifying acive web pages directly provides solution for the access control problem.