| With development of Internet,information resources are gradually enriched.Information security has become an increasingly prominent problem.Confidentiality authentication,integrity,non-repudiation,availability,security access control and other aspects are included in the information security service.Only the information is safe enough,users will be able to trust Internet.Therefore,information security is a primary problem for the design and development of the software system.Improving information security for the construction land supervision platform of the land and resources supervision department is becoming a primary task.This thesis introduces the research and development process of General Authorization Management Subsystem based on the relevant requirements of access control and authorization management of Construction Land Grant after Verification System in Liaoning Province.The research and implement of this subsystem is based on RBAC(Role Based Access Control).The RBAC model is improved in two aspects:fine-grained RBAC access control based on Trust-degree and fine-grained RBAC access control based on AOP(Aspect Oriented Programming).Two parts of security access control and security services access configuration are mainly included in this subsystem.Security services of access permission configuration provide a graphical interface that meets Construction Land Grant after Verification System in Liaoning Province of permissions configuration requirements for the users.Access control services provide system management,department management,user management,role management,permissions management,resource management,authorization management,permissions assignment and other subsystem module.It provides full set of permissions related services for the safety of access permission configuration and other subsystem.The general authorization management system uses Oracle 11g database and MyEclipse as the development platform.Using Spring,Hibernate,Struts and Spring Security development framework support the authorization management subsystem.Using Java language development realizes the demand for access control system.In the first place,this thesis analyzes the research status of RBAC technology and the key technology to achieve general authorization management subsystem.It also details fine-grained RBAC access control based on Trust-degree and fine-grained RBAC access control based on AOP.This thesis introduces the function demands of General Authorization Management Subsystem of Construction Land Grant after Verification System in Liaoning Province and how to apply fine-grained RBAC access control based on Trust-degree and fine-grained RBAC access control based on AOP in this subsystem.In the part of system design,the overall structure and function modules of system are introduced,and this thesis also introduces database design.In the system implementation process,according to the division of the system module,this thesis introduces the realization of each module of the system.In the test part of the system,the thesis gives the test of the General Authorization Management Subsystem and explains the results of the test.Finally,it summarizes the work of this thesis and looks forward to the future work. |
PDF Full Text Request