电子政务统一权限管理系统的研究与开发

发布时间：2019-01-13 07:43

【摘要】： 随着信息技术和网络技术的迅速发展,企业内部的应用系统越来越多。比如在媒体行业,常见的应用系统就有采编系统、排版系统、印刷系统、广告管理系统、财务系统、办公自动化系统、决策支持系统、客户关系管理系统和网站发布系统等。由于这些系统互相独立,用户在使用每个应用系统之前都必须按照相应的系统身份进行登录,为此用户必须记住每一个系统的用户名和密码,这给用户带来了不少麻烦。特别是随着系统的增多,出错的可能性就会增加,受到非法截获和破坏的可能性也会增大,安全性就会相应降低。针对于这种情况,统一身份认证、单点登录等概念应运而生,同时不断地被应用到企业应用系统中。针对电子政务网络中应用系统繁多,应用系统中的用户和权限管理混乱、管理维护复杂等情况,需要建立一个将多个应用系统整合在一起的统一权限管理平台,以实现电子政务网络应用系统中用户和权限的统一管理。为了保证授权服务平台的安全和数据的权威可靠,需要严格限制每个用户的权限作用域,防止用户越权访问,这就对授权服务平台的访问控制机制提出了很高的要求。本文根据电子政务网络的实际情况以及授权服务平台对访问控制的实际需求,研究开发了统一权限管理系统,并实现了该系统的单点登录。具体的,本文进行了如下工作: 1)分析研究了现有的权限管理方案,并对各种方案进行了相关的比较和总结。 2)介绍了本文的两个重要的理论背景:身份认证和统一权限管理。并介绍了研发统一权限管理系统中要使用的几种技术:J2EE技术、Web Service、XML存储和AjaX技术。 3)从需求分析和应用场景分析两方面阐述研发统一权限管理系统的重要性和必要性。 4)详细设计开发统一权限管理系统,具体包括:系统整体设计、系统功能描述、门户设计、接口设计和数据库设计。
[Abstract]:With the rapid development of information technology and network technology, there are more and more application systems in enterprises. For example, in the media industry, common application systems include editing system, typesetting system, printing system, advertising management system, financial system, office automation system, decision support system, customer relationship management system and website publishing system. Because these systems are independent of each other, users must log in according to the corresponding system identity before using each application system. Therefore, users must remember the user name and password of each system, which brings a lot of trouble to users. Especially, with the increase of the system, the possibility of error will increase, the possibility of illegal interception and destruction will increase, and the security will be reduced accordingly. In view of this situation, the concepts of unified identity authentication and single sign-on emerge as the times require, and are continuously applied to enterprise application systems. In view of the various application systems in the E-government network, the confusion of user and privilege management in the application system, and the complexity of management and maintenance, it is necessary to establish a unified privilege management platform that integrates multiple application systems together. In order to realize the unified management of users and permissions in the network application system of e-government. In order to ensure the security of the authorization service platform and the authority of the data, it is necessary to strictly limit the scope of each user's permission to prevent the user from accessing the authorization service platform, which puts forward a very high requirement for the access control mechanism of the authorization service platform. According to the actual situation of the E-government network and the actual demand of the authorization service platform for access control, the unified privilege management system is developed in this paper, and the single sign-on of the system is realized. The main work of this paper is as follows: 1) the existing privilege management schemes are analyzed and compared with each other. 2) this paper introduces two important theoretical backgrounds: identity authentication and unified authority management. Several technologies used in the research and development of unified privilege management system are introduced: J2EE technology, Web Service,XML storage technology and AjaX technology. 3) the importance and necessity of developing unified authority management system are expounded from two aspects: requirement analysis and application scenario analysis. 4) the unified authority management system is designed and developed in detail, including: the whole system design, the system function description, the portal design, the interface design and the database design.
【学位授予单位】：武汉理工大学
【学位级别】：硕士
【学位授予年份】：2009
【分类号】：TP311.52

【引证文献】