摘要
较之传统C/S模式应用程序相对封闭的运行环境,基于B/S模式的应用程序在开放式交互环境下的安全需求发生了很大变化,对Web应用程序的权限管理已成为一项核心技术.该文分析了企业Web应用程序中的用户授权与认证问题,针对实际应用中一般性需求设计了一个基于角色的层次授权认证模型,并结合当前主流技术ASP.NET给出了具体的实现方案.
Compared with the closed environment of traditional C/S applications, the security needs of B/S applications have undergone dramatic changes in an open interactive environment. Therefore, the authorization management for Web applications has become a kind of core security technology. This article is to analyze the problems of authorization management in enterprise web applications and propose a role-based hierarchical authorization and authentication model aimed at general requirements for practical applications. Combined with ASP. NET technology, it introduces a concrete implementation of the model.
出处
《南京晓庄学院学报》
2012年第6期88-92,共5页
Journal of Nanjing Xiaozhuang University
关键词
WEB应用程序
权限管理
层次授权认证模型
Web application
authorization management
hierarchical authorization and authentication model
