| 开源单点登录与角色权限管理的融合研究应用 |
| |
| 引用本文: | 黄永生,张祖平,龙军.开源单点登录与角色权限管理的融合研究应用[J].计算机系统应用,2010,19(10):108-111. |
| |
| 作者姓名: | 黄永生 张祖平 龙军 |
| |
| 作者单位: | 中南大学,信息科学与工程学院,湖南,长沙,410083 |
| |
| 基金项目: | 国家自然科学基金(60873081,60970095,M0921005);湖南省自然科学基金(07JJ6122) |
| |
| 摘 要: | 单点登录是解决网络环境下门户系统安全认证的一种有效策略。在分析Central Authentication Service(CAS)的体系结构、认证流程的基础上,对CAS进行了扩展,把粗粒度的角色权限管理机制引入到CAS中,提出了粗粒度、松耦合的基于角色权限管理的CAS。使CAS不仅能快速完成统一身份认证,而且还具有权限控制功能,从而提高了整个系统的可用性与安全性。
|
| 关 键 词: | 单点登录 CAS 身份认证 权限控制 松耦合 |
| 收稿时间: | 2/3/2010 12:00:00 AM |
| 修稿时间: | 2010/3/15 0:00:00 |
Fusion of Open Source and Role Based Access Control |
| |
| HUANG Yong-Sheng,ZHANG Zu-Ping and LONG Jun.Fusion of Open Source and Role Based Access Control[J].Computer Systems& Applications,2010,19(10):108-111. |
| |
| Authors: | HUANG Yong-Sheng ZHANG Zu-Ping and LONG Jun |
| |
| Affiliation: | (School of Information Science and Engineering,Central South University,ChangSha 410083,China) |
| |
| Abstract: | Single Sign-On (SSO) is an efficient and secure authentication solution for portal system. This paper analyses the architecture and authentication process of CAS. By extending the CAS, a mechanism of coarse-grained Role Based Access Control is added to CAS. This paper proposes a new model of CAS, which has a coarse-grained and loosely-coupled Role Based Access Control. The extended CAS cannot be used for authentication, but can also be used for authorization, which increases availability and heighters the security of the system. |
| |
| Keywords: | single sign-on CAS identity authentication authorization loosely-coupled |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机系统应用》浏览原始摘要信息 |
|
点击此处可从《计算机系统应用》下载全文 |
|
