Research And Implementation Of Web Security Architecture Based On Acegi

The application of science and technology management platform is a representation of the development of information technology in education industry. It can greatly enhance the information processing capacity of educational institutions, and strengthen the communication between them. With the platform's improvement of functions and increment of users, the system security requirements have become more and more complex. Design and develop a flexible and reliable security architecture to give effective protection for the system resources has become a key problem, which needs to be resolved immediately, for the further application and promotion of the science and technology platform.This thesis discusses and analyses some new ideas in web field, such as AOP (Aspect Oriented Programming), IoC (Inversion of Control) and Spring. On one hand, from the perspective of system resource management, this thesis designs a task and role based access control model for the organization and management of security information, such as users, rights and their relationships. The tasks and roles in the model both can be restricted by the time limitation configured by system administrators. On the other hand, to protect the system resources, this thesis also gives a common realization of Acegi security architecture, which is used to process the authentication, authorization and access control of the system.Through the security requirement analysis of the platform, this thesis designs a web security architecture based on the integration of Acegi and TRBAC (Task-Role Based Access Control). The organic combination of Acegi and TRBAC, not only satisfies the system security requirements, but also makes the system more maintainable and extensible. Through the continuous improvement on the basis of practical application, the web security architecture has been successfully applied to the platform and turned out to be practical. Its application will further promote the development of information technology in education industry.