基于PMI中间件的资源访问控制方案

授权管理基础设施(PMI)的核心思想是在PKI的基础上，实现权限管理和访问控制的有机结合，建立一个与具体应用系统相对分离的权限管理和授权服务系统。该文应用服务器插件技术和安全性断言标记语言(SAML)开发PMI中间件，在多种类型Web服务器上实现基于角色的资源访问控制。

Access Control Scheme Based on PMI Middleware

Realization of combination of privilege management and access control is the main idea of PMI based on PKI,so as to establish a privilege management and authority system separating from detailed application. This paper develops PMI middleware by plug-in technology and security assertion makeup language, achieves role-based access control scheme on various Web servers.