The Study On Web-MAGIS-oriented User Management System And The Information Security Strategy

The Web-MAGIS Platform is based on the oceanic and atmospheric spatial-temporal data model, which is designed and developed by the MIT Group. It designed with Service-oriented architecture, and seamless integrates three modules, that is: data management, spatial and temporal analysis and visualization, by combining the database technology, modeling techniques, visualization and network technology. And it uses the scientific workflow approach for the convenience of users. The major research of this thesis is designing and implementing the user management system and the study of information security strategies for Web-MAGIS.With the development of network, WebGIS becomes a hot spot in the field of GIS. Web-MAGIS is also a web-based geographic information system platform, so it is special because its data is mostly spatial data. It includes a large number of marine atmospheric information, so security becomes very important for resource sharing. Therefore to ensure the security for data transmission and storage, the establishment of effective security measures has become particularly important. This thesis analyzes the security features of Web-MAGIS platform, and then proposes the information security strategy, including physical security policy, security management policy, as well as the safety of the system platform.Because the system involves a variety of marine and atmospheric data, which have very wide sources and it provides a wide range of temporal and spatial analysis and visualization analysis. So different users have different needs and level of access, and then it requires a flexible user management. In this thesis, the main functions of the user management system is as follows: the registration and login of users, mainly contains the user name, password, e-mail, etc.; the user's personal information, including basic personal information and password information; the RBAC roles / rights management, including the role of management and rights management, such as the adding, removing, and modifying of the roles; the website management, including user management, site management and database management. The main researches of this thesis are as follows:First, analysis of security features of the Web-MAGIS platform, and then proposes the security policy for the platform.Second, this thesis uses an improved RBAC Access Control Policy for the user rights management system. The privileges of Web-MAGIS platform are not just including downloading, browsing and modifying, but also need to associate the page data on the site, the raw data and the file data. In order to manage and access easily, the Role-Based Access Control is improved.