Design And Implementation Of A Uniform Identity Authentication Platform Of School Network

Campus network is the basis for higher-level educational informationization. Due to the limitations at preliminary stages of campus network development, different work sections in universities have been in charge of different application systems. There are no unified criteria or forms for data. Therefore, it is impossible to share data effectively and there have appeared a lot of isolated information islands within local area network (LAN). Aside from that, it is inconvenient to users, for they have to use different names and passwords. Even so, they still cannot obtain all the information they need that easily. Besides all those disadvantages, it is unhelpful for universities'construction of informationization either.With the development of information technology, campus network can now offer better service, and has higher requirement for identity authentification and authorization management. The original application networks, which all work by themselves, cannot meet the current standards. Therefore, it is essential to have unified, secure and reliable identity aunthentification and authorization management systems. The Uniform Identity Authentication System can finish the whole set of tasks, and guarantee a unified model and centralized environment development and update. It is able to lower relative costs to run the system and allows campus network to update with the System.In this thesis, we will explore the current identity authentication systems and introduce the key technologies for unified identity authentication. Meanwhile, we will analyze the status quo of information systems in universities and identity authentication of website portals. After that, we will propose a new design plan for unified identity authentication based on university website portals. The new plan defines various roles, and allows users to acquire their own identities. The System can organize relevant tasks for consumers and screen irrelevant tasks. Administrators will authorize users the right to browse when issuing new information, which users can get according to their own roles. The new plan adds identity authentification at terminals to the traditional "user name+password" model. When users are acquiring information, the System will open the relevant resources. If users need more secret or sensitive data, further aunthentification is needed. In the end, this thesis will provide the model's feasibility by a simulation experiment and some codes for it.