Research And Application Of Security Mechanism Under Spring Architecture

Data security issues have aroused unprecedented interest in the cybersecurity community recently.Countries have strengthened network security supervision,and have promulgated a large number of network security policies and regulations,as data security issues have already covered political,economic,cultural,and social areas.Multiple information leaks have occurred just in 2018.Therefore,we should pay more attention to the security status of Internet platforms.Spring is now one of the most popular frameworks based on Java,because it can provide a comprehensive programming and configuration model for modern enterprise applications.This is why Spring's research on security performance is related to the security of the Internet platform and the privacy of each of us.Our work in this paper is the application of the security mechanism under the Spring framework in identity authentication and permission control.We explored the security mechanism fields under the Spring architecture from two aspects: authentication and permission management,and then proposed improvement methods.We discussed the shortcomings of the two technologies of JWT and Spring Security in the authentication part.We proposed some improvement methods and build a stateless authentication system based on Spring Security and Java JWT.At the same time,we mainly analyzed the advantages and disadvantages of several permission control models in the permission management part and made some improvements.We also did the same research and improvement work as we explored the needs for authentication and permissions management.This paper proposes a trust-based RBAC model,and expounds the composition of the model from two aspects: direct trust and indirect trust.The process of solving direct trust and indirect trust is studied creatively,and the core part of pseudo-code implementation is given.This paper also builds a framework platform for identity authentication and permission control with improved security mechanisms.We implemented the core functions of the system and conducted operational tests on it.This paper also provides a description and presentation of the overall framework and key modules of the system's identity authentication module and authority control module.Tests show that the security method proposed in this paper can be improved in terms of features,performance and browser compatibility.