| With the development of networked embedded systems, embedded web system with its unique advantages has been widely used. However, while the embedded web system provides cost-efficient and practical access solution, its own security has some hard problems.This thesis studies the embedded systems security-related web technologies and protocols, and for the security problems encountered in the embedded web systems application process, a security framework is designed to meet the security needs of the whole embedded web system. The framework is divided into two parts, security access control model and secure transmission provided by embedded web server. In this thesis, the security framework focuses on designing and implementing the security access control model. In the access authorization module, this thesis, combining the characteristics of the embedded Web systems with the research on the role-based access control model, simplifies the role-based access control model to remove the role of complex patterns of inheritance and gives the embedded web solution for access control system that is"user-role-privilege set (business-page-operation)"model.The embedded web access control system is achieved through CGI technology, and the web application system passes the test. Test results show that the model is achievable and has good functions, which provides a high security protection to the whole system. |
PDF Full Text Request