摘要
以在线服务取代离线数据是近年来地理信息应用方式的一个重要转变。由于地理信息资源的特殊性,安全体系的设计及权限控制一向是地理信息公共服务平台建设重点。本文首先介绍了Http认证和令牌认证2种典型的地理信息权限控制方法。然后以数字扬州地理信息公共服务平台为例,分析了其在地理信息服务聚合分发过程中可能面临的安全风险,以及对应的安全策略体系框架。最后阐述了ArcGIS Server令牌技术在公共服务平台安全体系中的实现方法,并对应用效果做出分析。
Replacing offline data with on-line service is an significant change in the application of GIS in recent years. Because of the particularity of GIS resources, the design of security system and access control has always been the most important aspect in the construction of geographic information public service platform. It firstly introduces two kinds of typical geographic information access control methods--http authentication and token authentication. Then analyzes the security risks that may be faced in the process of geographic information service aggregationdistrihution and the corresponding security policy framework, take the Digital Yangzhou GIS public service platform for example. Lastly, elaborates the implementation method of ArcGIS Server token technology in geographic information public service platform security system and analyzes the application effect of this technology.
出处
《现代测绘》
2015年第4期41-44,共4页
Modern Surveying and Mapping
