| With the trend of digitalization of information and the performance of electronic government, web technology has been widely used. The information security of web pages becomes more and more important. So, the study of how to implement classified access and content confidential of web pages has great significance. This article discusses and implements an application of taking advantage of X509 technologies and SSL mechanism to offer the web security. At first, an introduction is given to X.509 certificate and SSL technology, and the attacks that SSL will face are also inspected, showing that it is well designed and can stand various kinds of attacks. Then the Role Based Access Control method (RBAC), Internet Information Service (IIS) and it's interface is analyzed. On these bases, an user certification and authentication system on web server is proposed, which is based on web server and using X.509 certificate and the RBAC method. And then, the design and installation of the system is described in detail form the point of view of engineering. At last, the test methods and of this system is introduced and its conclusion is been referred to with a prospect to the future. The final production of the study is the design and implementation of access control system based on IIS web server which integrates with X.509 certificate and the RBAC method. The production of this study had already been put into use and showed good result. |
PDF Full Text Request