分布式环境下资源访问控制关键问题研究计算机系统结构专业论文.docxVIP

AbstractResearch Abstract Research on the Key Issues of Resource Access Control under Distributed Environments Zhang Fangzhou Resources access contr01 fACl is an essential defensive measure against a large number of securtty atcacks．Under distributed environment,use of middleware technology iS one common method to support access contr01．but it also incurs some problems to be overcome for the method to be fully effective． 1)It does not offer a complete solution。as application developers often ha～e to resort tO embedding AC into application code components．As a result，AC functionality is intertwined with application logic，making implementation difficult and iRefficient with high error rates and unclear ownerships of resources．2)For security protection tO be effective in many application areas，AC requires fine granularity of control， use of application specific information in authentication and in granting resource access．and enhancement of aathentication uniformity and reliability among multiple difierent organizations．31 Middleware components are increasingly heterogeneous in structure and complicated for inter-component communication．When middleware components are used． one must be aware of their security characteristics． For example．one must know if there is danger of data Ieak in the network．However,it is di箭cult to prove if middleware components have good security functions． In order to improve on the completeness and eriectiveness of middleware access contr01． this thesis proposes a new architectural method：J2EE based RBAC support．First．we analyze iil detail the workings and performance ofJ2EE access control mechanism．Wj then provide a design on the J2EE protection system configuration that allows formal definition of system states．The thesis proposes a design of an authentication algorithm in terms of such definition． Second，this thesis studies how to support Role Based Access Con仃ol model when providing J2EE security service．Using J2EE protection system