摘要
阐述了目前高校教务管理系统存在的各种安全问题,综合分析各种安全问题出现的原因,论证了建立教务管理系统安全体系的必要性.分析目前比较常用的B/S模式与C/S模式的优缺点,并针对高校教务管理系统的特殊性,提出基于B/S与C/S模式相结合的高校教务管理系统模型,弥补二者单独应用所存在的缺点与不足.同时,为了避免由于服务器配置不当,或者Web设计代码存在缺陷而使系统处于风险中,又在该模型基础上引入角色权限管理的机制,把教务管理的工作结构通过角色映射到系统中,实现系统权限与角色对应,而不是用户本身,最终设计了基于RBAC的B/S与C/S模式相结合的教务管理系统安全体系模型,从而使教务管理系统中信息的安全性得到了保障,同时也保证了系统安全、稳定、快捷的运行.
The aim is expounding the security problems of the present educational management system,analyzing comprehensively the reasons of all kinds of security problems,proving the necessity of Establishing educational management system.Analyzing the advantages and disadvantages of the common B/S mode and C/S mode,and aiming at the particularity of university educational administration management system,we put forwards the University educational administration management system model base on B/S model and C/S model,makes up for the shortcomings and deficiencies of two separate applications.At the same time,in order to avoid the problems of the server is configured properly,or the defects of web design code which make the system is at risk,the Role Based Access Control is introduced based on this model.The structure of educational administration work is mapped to system through the role to realize the corresponding of the system authority and the role,not the users.Finally,Designs of the University educational administration management system model of B / S model and C/S mode combination is finished based on RBAC.Thus,the system can ensure the security of the information in the system of teaching affairs management,guarantee the security,stability,fast operation.
出处
《辽宁师范大学学报(自然科学版)》
CAS
2012年第4期488-492,共5页
Journal of Liaoning Normal University:Natural Science Edition
基金
辽宁省教育厅科学技术研究项目(05L209)
关键词
教务管理系统
安全体系
B
S模式
C
S模式
角色权限管理
educational administration management system
security system
B/S model
C/S model
role based access control
