| 一种基于过滤技术的访问控制方案设计 |
| |
| 引用本文: | 杨树林,胡洁萍. 一种基于过滤技术的访问控制方案设计[J]. 北京印刷学院学报, 2007, 15(2): 66-68 |
| |
| 作者姓名: | 杨树林 胡洁萍 |
| |
| 作者单位: | 北京印刷学院,北京,102600;北京印刷学院,北京,102600 |
| |
| 摘 要: | 网络安全对于Web应用尤为重要,为了改进Web应用中访问控制方法,提高Web应用的安全性和效率,在分析"用户-角色-资源"模型不足的基础上,结合过滤技术的应用,提出了"用户-权限-限制"模型,给出了该模型的表示方法:用户信息采用关系数据库存储以利于管理;权限信息采用XML文件存储便于表示和维护;限制表示成路径容易体现资源集合的层次关系.同时,基于过滤技术,给出了访问控制的实现方案.所给出的模型和实现方法具有管理维护方便、验证效率高、实用性强等特点.
|
| 关 键 词: | 访问控制 模型 XML 过滤技术 |
| 文章编号: | 24352242 |
| 修稿时间: | 2007-01-11 |
The Design of the Plan of Accessing Control Based on Technology of Filter |
| |
| YANG Shu-lin,HU Jie-ping. The Design of the Plan of Accessing Control Based on Technology of Filter[J]. Journal of Beijing Institute of Graphic Communication, 2007, 15(2): 66-68 |
| |
| Authors: | YANG Shu-lin HU Jie-ping |
| |
| Affiliation: | Beijing Institute of Graphic Communication, Beijing 102600, China |
| |
| Abstract: | Network security is especially important in regards to Web application.In order to improve the system within the Web application,the access control method is used to enhance the Web application of security and efficiency.Analyzing the "user-role-resource" model as the insufficient foundation,with the application of filters,we raise the model "userright-limit" and its expression method.The user information uses the relational database for management;the right information uses the XML document memory for the expression and maintenance;the limitation of expressive way is easy to manifest the level relations of the aggregative resources.At the same time,the technology based on filters has realized the plan of accessing a control plan.The model and its method have the characteristic of convenient management maintenance,efficient confirmation,better usability and so forth. |
| |
| Keywords: | XML |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
