| With the development of the network and its wide application,the importance of information security in the information management system is gradually increasing,in order to ensure information security of the system,protect sensitive information,after years of research,many security models and security mechanisms are put forward,the Role-Based Access Control is one of the model to ensure information security.This paper first analyzes the present situation at home and abroad study of access control,points out that discretionary access control and mandatory access control has been unable to adapt to the growing demands for security system, so the out of the Role-Based Access Control (RBAC).RBAC by introducing the concept of role, contact permissions and roles, the role assigned to users and realize the user authorization, complete the logic separation of user and rights.Analysing based on the four kinds of RBAC models:RBAC96、 ARBAC97、DRBAC、NIST-RBAC,combined with the specific characteristics of NetCourse system,extended NIST-RBAC model,in roles and permissions associated partial deployment dynamic authorization strategy based on Environment.On this basis, the paper presents the system design scheme, including the design of the access control module based on NIST-RBAC access environment、user authentication mechanism、dynamic access authorization authentication mechanism、database design etc.Finally, through the realization of the NetCourse system,implemented on the Java platform layer, business layer, control layer and data persistence system security mechanism,at the same time, verify the design to achieve reliability scheme implemented in the NetCourse system. |
PDF Full Text Request