Design and implementation of an authorization system for a graduate school information

GU Hang; XIA Fan; SONG Shu-bin; XIAO Li-min; DONG Qi-wen; XU Lin-hao; ZHOU Ao-ying

doi:10.3969/j.issn.1000-5641.2018.03.012

Issue 3

May 2018

Turn off MathJax

Article Contents

Article Navigation > Journal of East China Normal University (Natural Sciences) > 2018 > (3): 109-120

GU Hang, XIA Fan, SONG Shu-bin, XIAO Li-min, DONG Qi-wen, XU Lin-hao, ZHOU Ao-ying. Design and implementation of an authorization system for a graduate school information[J]. Journal of East China Normal University (Natural Sciences), 2018, (3): 109-120. doi: 10.3969/j.issn.1000-5641.2018.03.012

Citation:

GU Hang, XIA Fan, SONG Shu-bin, XIAO Li-min, DONG Qi-wen, XU Lin-hao, ZHOU Ao-ying. Design and implementation of an authorization system for a graduate school information[J]. Journal of East China Normal University (Natural Sciences), 2018, (3): 109-120. doi: 10.3969/j.issn.1000-5641.2018.03.012

Citation:

PDF( 1088 KB)

Design and implementation of an authorization system for a graduate school information

doi: 10.3969/j.issn.1000-5641.2018.03.012

1.
School of Data Science and Engineering, East China Normal University, Shanghai 200062, China
2.
Graduate School, East China Normal University, Shanghai 200062, China
3.
Infosys Technologies China Ltd, Shanghai 200135, China

Received Date: 2017-09-19
Publish Date: 2018-05-25

Abstract

Abstract

Authentication and authorization are critical to ensuring the security of data and services in software systems. To satisfy the need for authorization management during the development of the next generation information platform for East China Normal University's Graduate School, this paper proposes an access domain-based authorization module and uses Spring Security components to implement a hierarchical, configurable, high-performance privilege interceptor. The approach can effectively defend against popular network attacks, such as session attacks and CSRF, guarantee low latency for web service access, and provide a flexible way to meet the frequently changing authorization requirements of faculty from different schools and departments.
- authorization,
- authority management,
- access domain model

FullText(HTML)

References(9)

References

[1]	吴波, 王晶.基于基本RBAC模型的权限管理框架的设计与实现[J].计算机系统应用, 2011(4):50-54. http://edu.wanfangdata.com.cn/Periodical/Detail/jsjxtyy201104011
[2]	贾青梅, 杨正球. 统一权限管理模块的设计与实现[C]//2009通信理论与技术新发展——第十四届全国青年通信学术会议论文集[C]. 中国通信学会青年工作委员会, 2009: 233-237.
[3]	ZHAO F, WANG L, TIAN X. Design and implementation of authorization management system based on RBAC[J]. Computer & Digital Engineering, 2012, 532/533(43):586-590. https://www.scientific.net/AMR.532-533.586
[4]	桂艳峰, 林作铨.一个基于角色的Web安全访问控制系统[J].计算机研究与发展, 2003, 8:1186-1194.
[5]	顾春华, 肖宝亮. RBAC模型层次关系中的角色权限[J].华东理工大学学报(自然科学版), 2007(1):96-99. http://www.wanfangdata.com.cn/details/detail.do?_type=perio&id=hdlgdxxb200701022
[6]	杨柳, 危韧勇, 陈传波.一种扩展型基于角色权限管理模型(E-RBAC)的研究[J].计算机工程与科学, 2006, 9:126-128. http://d.wanfangdata.com.cn/Periodical_jsjgcykx200609042.aspx
[7]	桂艳峰, 林作铨.一个基于角色的Web安全访问控制系统[J].计算机研究与发展, 2003, 8:1186-1194.
[8]	NI P, LIAO J, WANG C, et al. Web information recommendation based on user behaviors[C]//Computer Science and Information Engineering, 2009 WRI World Congress on. IEEE Xplore, 2009: 426-430.
[9]	ZHANG Y, JOSHI J B D. Role Based Access Control[M]. New York:Springer, 2009.