The Application Of An Improved Access Control Model In Authority Management Module

Posted on:2011-12-04

Degree:Master

Type:Thesis

Country:China

Candidate:Y Huang

Full Text:PDF

GTID:2248330395458819

Subject:Computer technology

Abstract/Summary:

PDF Full Text Request

With the rapid development of society and internet applications, socialinformatization has become more popular in people’s life. Our country is promotingthe informatization in enterprises and institutions strongly, and more and moreenterprises and institutions have established Internet-based web applications.However, the issues on the security of the web application have become increasingprominent. Access control technology is one of the main methods to solve webapplication security. This thesis focuses on the web application security, studies thecurrently popular RBAS technology in depth, and designs and implements accesscontrol module that is suitable for web application.This thesis, firstly, gives a brief overview of the currently used access controltechnology, and analyzes the features of DAC, MAC, and RBAC. The thesis alsoexplains the basic concept and design of RBAC model and primary studies thearchitecture of RBAC96and ARBAC97model.Second, the thesis introduces multi-design mode of software development,explains the design of the MVC mode in detail, and has a deeply study on thelightweight J2EE development framework, the Struts, Spring and Hibernateframework. Through the research on the basic RBAC model and the extended RBACmodel, this thesis analyzes the problems of current RBAC model, and develops anextended RBAC model----BSRBAC, which is based on the department and business.This model divides the role into public authority, private authority, departmentauthority, and business authority and solves the problem that the complex role incomplicated system, the division of role authority has nothing to do with unitorganization structure, the authority conflict in role inheritance relationship. Itcompletes the design of web exam management module according to BSRBAC model,including user management design, role management design, authority managementdesign, department management design, authority type management design, roleauthority associated management design, and database design.In the last part of the thesis, it gives a conclusion and points out the shortage andimprovement direction of BSRBAC model.

Keywords/Search Tags:

Access Control, Role, Design pattern, Struts, Spring, Hibernate, BSRBAC

PDF Full Text Request

Related items

1	An Application Research On Open Source Technologies Struts,Spring,Hibernate In MIS Development
2	Design And Implementation Of The Antenna Monitoring System Based On The Framework Of Struts+Spring+Hibernate
3	The Web Application And Realization Based On Struts+Hibernate+Spring
4	The Application Of Struts In Cooperative Office System Based On MVC Pattern
5	Research And Implementation Of The Integrated Loyalty System Based On Struts, Spring And Hibernate
6	The Research And Realization Of The Information Management System Based On Struts+Hibernate+Spring
7	Design And Implemention Of Equipment Supplies Bidding System Based On The Struts+Spring+Hibernate Framework
8	The Research And Implementation Of Web Application System Based On Struts, Spring And Hibernate
9	The Research And Implementation Of AMIS For DFD Based On Integration Of Struts, Spring And Hibernate
10	Design And Implementation Of The WEB Application Based On The Framework Of Struts+Spring+Hibernate