Research And Application Of SOA-based Access Control

With the development of biological information and the advent of the era ofpost-genomics, medical, life sciences more and more need the support from acomprehensive Biobank. A based multi-domain, multi-agency, distributed biobankinformation management system is also needed.Currently the biobank informationmanagement system is still stuck on a small scale, closed-end management mode,the biological sample information between different agencies can not becommunicated, research resources are not fully utilized.In this situation agencies that need study resources have not enoughsample,and the research institutions with a weak study ability have a lot of sample butcan’t well manage and utilize, such uneven distribution of those samples.It broughtgreat loss to the biological, medical fields.Based on the situation above, in this paper,using SOA architecture, a localmanagement,multi-agency cooperation, regional sharing biobank informationmanagement system is proposed.And effectivly solved the current decentralized andchaotic reality of sample management by using SOA architecture openness, loosecoupling, etc.Then describe how to use the SHH lightweight framework to buildSOA-based architecture BIMS system.The openness and loose coupling characteristics of SOA broughtrevolutionary progress to the BIMS, but also brings risks to the security of BIMSsystem.System that in SOA architecture is a distributed system.Under the SOAarchitecture, resources in different security domains, connected through an enterpriseservice bus, resources do not belong to a unified management center, and a service tobe able to with different security domain dialogue, which requires access control can overcome this distribution, so that the request can flow freely in different systems.provided perform service of access control and provide decision making of universalaccess control.The execution and decision-making unit of discretionary access controlmodel, mandatory access control model and role-based access control model etctraditional model applied to SOA architecture will closely integrate the safety logicand business logic in system.The characteristics of SOA loosely coupled will bedestructed,and SOA architecture lost its meaning,and therefore these traditionalaccess control models can not support access control policies under the SOAarchitecture.The security of a system where it is essential for the existence, there is noreliable security strategy, BIMS system simply can not gain a foothold in the field ofmedical research. Based on models of ABAC, RBAC, combined with SOAarchitecture, RABAC access control model was introduced, and a role-basedservice-oriented new concept ofsecurity access control model was proposed. Discussesthe technical basis, implementation framework and processes of RABAC, andintroduced the application of RABAC model in BIMS system based on SOAframework, analyzes the advantages RABAC model, proves the feasibility ofRABAC model in guaranting the security of biobank information system. The wholethesis laided the foundation for the security of system based on SOAarchitecture,andalso made a very good example for the promotion of RABAC model.