| With the rapid development and widely use of Internet, enterprise applicationsare becoming more and more complex. Accordingly, more requirements are enforcedon the design of security system that based on enterprise application. JavaAuthentication and Authorization Service (JAAS) has been the standard securityservice framework of Java, which provides the flexible and scalable mechanism forsecurity client-and server-side Java application. Aspect-Oriented technology isstate-of-arts evolution of software programming methodology, which is for solvingthe Orthogonalization of crosscutting concerns that, traditionally, cannot be handledwith efficiently by Object-Oriented techonology. So, employing AOP in design ofJAAS-based security will create implementations that are easier to design, understand,and maintain.The security model, design and implementation of JAAS/PAM are discussed indetail firstly in this thesis. Then, Aspect-Oriented methodology is focused and one ofAOPs –AspectJ is introduced. Based on these researches, a design framework ofauthentication server is presented. At last, adopting the AOP, the design andimplementation of a JAAS-based security authentication server are put forward on abrilliant way.The main contributions are as follows:1. Based on the research project, a JAAS security server that comprisesauthentication, access control and logging is implemented.2. Through analyzing the AOP methodology in detail, differences and simliaritiesbetween the AOP and OOP are discussed from view points of SOC, and relationshipsbetween AOP and Design Pattern are emphasized from view points of softwareReusability & Maintainability.3. Introducing AOP methodology in project design, the idea used for combiningAOP into security system is given out.4. Refactoring the legacy JAAS security system with AOP and make it moremaintainable and extensible. |
PDF Full Text Request