The Design And Implementation Of Enterprise Address Book Based On OAuth Security Architecture

With the development of computer network technology, significat improvement on theinformatization of enterprise and campus has achieved with the advent of variouscommunication systems. Address book is used as an indispensable service provide bycommunication systems. The unified management of address book resources betweenmultiple systems will promote the process of digitalized campus in which educationalinformatization is widely adopted. The issues of how to ensure the security of the addressbook, how to eliminate data inconsistency caused by independent management of contactsbetween all systems and how to maintain synchronization between all systems’ contacts needto be addressed and resolved ungently.Focused on the openness and privacy of enterprise address book, this paper makes anin-depth analysis on the security of address book with identity authentication and accesscontrol. With the open-source package of OAuth protocol, this article describes animplementation of security architecture for address book, which is composed of CentralAuthentication Service (CAS) and OAuth mechanism, combined with role-based RBACaccess control. The safe authentication mechanism based on the combination of OAuth andCAS ensures the privacy and openness of address book in the sense that it enables users toanonymously access the address book included in third-party communication systems withoutthe leakage of curicial data. The address book is based on the identity authentication and openauthorization. The robust security architecture of address book with role-based RBAC accesscontrol is built on top of the authentication mechanism.This paper proposes a safe and open enterprise address book that provides infrastructuralservices for enterprises and campuses. In the address book, the resource-oriented RESTfullimplementation supported by Spring MVC provides a stateless open interface for contactmanagerment and user managerment. In addition, the address book offers users multipleinteractive represenatation of intermediate data according to content consultation. And itreally completes the goal of identical resource with multiple representations which is a novalfeature of REST.