Research On Authorization For Investment Compliance System

The investment compliance system is a financial system which is related to the economic interest. So it has a very strict demand on the user authorities' management. At the same time, it also raises a bigger challenge to the authorities' management and the authorities' maintenance in the fulture because of the complicated system functions and the big user group.This thesis is mainly researching on the authorities' management mechanism for the investment compliance system. By using the Java reflection mechanism, we will raise a new resoluation of how to design the user authorities' management module that is based on the configuration library. Then the system resources maintenance in the fulture can be carried out dynamically by modifying the authorities configuration and it will also isolates the system resoures and the users' authorities. This strategy is based on the RBAC authority management policy which is from the Sun Microsystems, Inc. By using the AOP design idea effectively, we will make the authorities management modules as an independent front controller and make the authorities maintenance much easy, safe and strong through the effective access control in thick- granularity level and thin- granularity level.This investment compliance system is an internatinal cooperation project of a famous fund custody company. This project is being developed by a group of five to seven people. During the development, the author undertakes the design work of the system authorities' management mudule and also joins the development work with other team members. Now, after more than two years development, the system has nearly gone into the production stage.The main contribution of this thesis is as following. The RBAC strategy is only an authority management policy (in API level), and it is very different from the module design and system architecture (in architecture level). So this thesis focuses on this issue and raises a new design policy on authority management module. By using this design mechanism, the system will integrate the authorities management module(based on the RBAC policy) with other function modules more easily, and make a quality improvement in the maintenance, expansibility, safety, sturdiness and so on, especially in the application with the complicated authority management, so it has very big practical significance.