| With the rapid development of the Internet and the constant changes in people's lifestyles,the scale of business operations has continued to expand,and the related system organizations and user categories have become increasingly complex,leading to the need for enterprise-level application systems to implement safe and effective management of resource data.Authority management is an important mechanism to ensure information security,and it is also a necessary means to achieve system security.The core of authority management is the access control mechanism,it mainly refers to users accessing resources according to security policies set in advance,and can only access resources that have been authorized,and cannot access resources that are not authorized.Due to various types of application systems,the management of authority has problems such as complex authorization methods,difficulty in implementation,inconsistency of authority management,poor universal,and insufficient access control granularity.Therefore,it is necessary to build a authority management component with centralized,and is easy to implement,easy to use,highly secure,and highly universal in multiple-application system.,and meeting the higher requirements for access control by enterprises is an urgent problem that needs to be solved in the field of authority management security for various enterprise application systems.This paper analyzes the traditional access control model and role-based access control model,task-based access control model,and attribute-based access control model.Combined with the functional positioning of the authority management component and the deficiencies of the RBAC model,an improved RBAC model is designed and the security function points are added.On this basis,the functional modules of the authority management component,component interfaces and database are designed,and the business analysis,structure and function design of the multiple-application system are completed.Finally,the authoritymanagement component is applied to the QJS network system with the multiple-application system to implement centralized authority management of the social system of the QJS network.The practical application effect of the authority management component in the QJS network system shows that the component can reduce the workload of the developer,enhance the flexibility of the authorization mechanism,and provide a good management interface,realize the security access control mechanism,and facilitate the administrator's management and maintenance,and can be effectively used for centralized authority management in multiple-application systems. |
PDF Full Text Request