| With the widely using and development of Enterprise Information Systems, People look more important upon the security of system gradually. Access control technology is the key factor of solving security problems. At present, most of enterprise information systems adopt traditional methods including Discretionary Access Control(DAC) and Mandatory Access Control(MAC), which have some deficiencies.This thesis theoretically and practically studies Role-based Access Control (RBAC) in Enterprise Information Systems. The thesis introduces the domestic and international research on Access control and some commonly used Access control strategies and models, and carries on the comparison.With widely-used Role-based Access Control (RBAC) as theoretical basis, this dissertation designs and implements an authority management system. The first is Access control for entering the system module, while the second is resource operation control after entering the system module. Corresponded to the authority management, this dissertation analyzes the framework of the system with use cases and logical views, designs and implements the user management module, user groups and process permissions configuration module and login module. User management module allocates roles to different users to control their Access permissions. User groups and process permissions configuration module assigns users to different user groups, and allocates process resource permissions based on different groups. This system succeeds in working on Shandong Yili LvDian company information system. The RBAC is used for managing the privilege of user. This thesis implements the relative independence between authentication server and application system, and achieves the design goal. |
PDF Full Text Request