Design And Implementation Of RBAC Access Control Model Based On B/S Architecture

With the rapid development of mobile Internet application technology, theBrowser/Web Server/DB Server three-layer architecture which had developed based onthe Internet technology has become more and more popular. But the technical feature ofthe structure of the B/S architecture also leads to some information security issues whenbeing used in the open Internet environment. Access control technology has alwaysbeen a main technology among those that guarantee information security. So finding outthe most suitable access control technology that could be used in the B/S architecturehas become the focus of the research during these years.This Thesis put forward an idea that using theory of the Role-Based AccessControl model to solve the access control issue of B/S architecture. And analysis andcompare the RBAC96model and other extended RBAC model that had been putforward by researchers at home and abroad. Summarize the advantages anddisadvantages of all kinds of models.Combining with the design theory of different RBAC models and the request ofaccess control of the B/S architecture, put forward a new extended RBAC model calledBI-RBAC that based on Business and Interface. And give the detail information of themodel from the aspects about model design, the definition of elements and constrains.Establish the permissions allocation strategy and access authentication mechanism ofthe new model.Analyze the subject and object of access control and characters of the BI-RBACmodel. Intensively study the software framework that implements the model under B/Sarchitecture. Suggest using the asp.net MVC4.0software design framework to realizethe BI-RBAC model. And give the detail information about how to realize the mainlyentities of the BI-RBAC model in the MVC4.0framework.By MVC4.0framework, apply the model to a new Manufacturing ExecutionSystem which based on B/S Architecture. Give the detail information of the appliedprinciple of the model. Display the interface and function of the permissions allocationstrategy and access authentication mechanism. Give the conclusion about the feasibilityof the BI-RBAC model and put forward some suggestions and prospects about theimprovement of the model for the follow-up research work.