The Design And Realization Of The Campus Network Web Services Role-based Access Control

With the rapid development of education information , more and more information and applications through Web Services Published online. Because of flexible and open, the Campus Network will visit various services. How to ensure that authorized users can transparently visit various services and to prevent unauthorized users attacks will be a pressing demand. Access control as an essential security technologies, it can restrict access to critical resources, but also be able to prevent the intrusion of illegal users. Role-based access control model is greater flexibility and scalability, compared with a traditional self-access control and mandatory access control. SOA is a framework of Web Services. and. NET platform to develop SOA applications are commonly, which using object-oriented and component-oriented software technology to solve the problem, in order to achieve Web services Role-Based Access Control has provided technical support.Based on the campus network of Jinzhong college, because of the existence of stealing user names and passwords,SQL command injection attacks, which will enable information to be tampered with bad information, the consequences would be disastrous . Therefore, the security my school Web application must be the first one. In this paper, for campus network Web services security issues,I has developed a access control systems of role-based access control theory and . NET platform based on service-oriented architecture (SOA). When the School Department Web users to update the information, the first put the system through the Web document can be written so the information can be updated; End update information when a user through the system is set to put the database files read-only, even after the attacker get a user name and password, the information can not be modified. And. NTE will be compiled as a Web application DLL file in order to greatly accelerate the speed of Web applications, reducing the waiting time for user management.Because there are still some lack of work ,in the future, I should do some improvements: the classification of role is relatively small, in the future development and application of the increase in the classification should also be appropriate; because of the complexity of large-scale database, the system can not be its temporary control, which should be further studied;Website of the system improve the safety at the same time, the Website also limit the use of a scale of other functions, which need to look for causes of conflict in the future to improve and so on.