| B/S 系统中跨权访问控制技术 |
| |
| 引用本文: | 魏玮,张庆,梁文铮.B/S 系统中跨权访问控制技术[J].兵工自动化,2011,30(2):49-49,65. |
| |
| 作者姓名: | 魏玮 张庆 梁文铮 |
| |
| 作者单位: | 中国兵器装备集团信息中心;中国工程物理研究院计算机应用研究所; |
| |
| 摘 要: | 通过分析HTTP请求中的强制访问和信息篡改及伪造问题,设计业务数据访问控制模型和业务活动权限模型,实现了业务数据的访问过滤和业务活动URL请求校验。该技术有效地解决了B/S系统中的跨权访问问题,实现涉密系统中多维数据的访问控制逻辑。
|
| 关 键 词: | 访问控制 业务活动 业务数据 面向对象 |
| 收稿时间: | 2013/1/16 0:00:00 |
Technique of Access Control Based on B/S System |
| |
| Wei Wei,Zhang Qing,Liang Wenzheng.Technique of Access Control Based on B/S System[J].Ordnance Industry Automation,2011,30(2):49-49,65. |
| |
| Authors: | Wei Wei Zhang Qing Liang Wenzheng |
| |
| Affiliation: | Wei Wei1,Zhang Qing2,Liang Wenzheng2(1.Information Center,China South Industries Group Corp.,Beijing 100089,China,2.Institute of Computer Application,China Academy of Engineering Physics,Mianyang 621900,China) |
| |
| Abstract: | Through analyzing the compulsion access in HTTP request and information juggle and forgery,design data access control model and task purview model,and realize access filtering of task data and URL verifying request.The technology can solve the access control problem in B/S system and realize multi-dimension data logic in encrypt system. |
| |
| Keywords: | access control business activity business data object oriented |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《兵工自动化》浏览原始摘要信息 |
|
点击此处可从《兵工自动化》下载全文 |
|
