| With the widespread application of the network technology, the ASP (application service provider) business pattern is greatly developed in recent years. The ASP business pattern can build the information system for Enterprises flexibly, and the ASP supply software development, installation, preservation, only for low rent expense from the Enterprises. So Enterprises can use the limited funds to raise their core competitiveness. But along with the sustained growth of the ASP's user scale, the relationship between users becomes increasingly sophisticated, and the users ask for customizable and individual services. So that the access permission of ASP faces to huge challenge, mainly embodying in low management efficiency and potential safety management hazard .To solve the complicated management requirements between users and services, improve management efficiency and security in ASP service platform, this paper presents a role-based access control based on user delegation mechanism in ASP pattern(UDRBAC) after researching the access control model(specially researching some RBAC model).The paper designs an authorization delegation Hybrid management model, uses a formalization to describe the UDRBAC model, analyses its user delegation management and brings it's strategy into effect. A case design and realization of the UDRBAC model is described. First the service platform architecture, access control flow and management function structure are designed. Then, UDRBAC model is designed into the LDAP. All user's identification and authorization information were stored in a Light-weight Directory Access Protocol (LDAP), policy agents were set up to protect the application service resources, and implemented Layered Authorization and control for user's access. It make ASP be more effective and stable.Finally, summarize the main works of the paper, and then look into the future of the new problems and trends in development of UDRBAC model. |
PDF Full Text Request