The Research And Application Of Port Navigation E-Government System Based On Access Control Technology

With the rapid development of network technology, more and more enterprises have build its own E-Government systems online, and how to keep the core data security has become the hot spot of people. Access Control which is defined by International Standards Organizations as one of the five standard security services is an important network security method to prevent unauthorized access. Since the 1970s, there has been a variety of access control policies, and now RBAC (Role-Based Access Control) is the mainstream of all the model. However, as the RBAC model is an abstract model which need to identify the business process rules, the E-Government System that suit for the Port-Navigation's business characteristic, set up on the Internet, contain a number of different agencies and different types of are very rare. Also the existing Access Control module coupled with business process module in a high degree which cause harmful system expansion and maintenance.To solve the above problem, based on the Ship Registration System which is subproject of the Integrated Services Platform Of YunNan Shipping Administration, this article first introduce three types of Access Control:Discretionary Access Control, Mandatory Access Control, Role-Based Access Control, and focus on several key models of RBAC. Compare the advantages and disadvantages of each model, this article analysis the characteristics of the RBAC model and its advantage when used in large-scale E-Government system.Then, According to RBAC theory and the complex user relationships, diversified business processes of Port-Navigation enterprises, this article extend the RBAC model.through the introduction of the concept of the role of geographical and node role.this extend model become more suitable for ship registration system Finally the article introduce the design and implementation of the extend model, especially explain the database design and the user management module in detail and emphasis the way to implement access control module of the low coupling.The realization of this extend model has been applied in practice successfully, this article hope to provide effective help in the field the through this research.