摘要
在目前的各种网络应用中,权限管理都是业务系统的重要组成部分,可通过对权限进行合理的分配和控制以提高数据及系统的安全性。通过分析三种典型的访问控制模型的优缺点发现,借助数据库设计的基于角色的权限系统,相对于其他模型具有更好的安全性、灵活性和分布式管理特性。由于软件开发运行对外部环境的依赖性,软件在不同平台下的开发和运维十分困难。以Docker为代表的容器技术改变了这一情况,有效降低了部署压力。以RBAC模型为基础,设计并实现权限控制系统,改进权限管理工作,可提高管理水平和效率;通过将系统部署到容器,可减轻平台开发、部署及运维压力。
In the current various network applications,authority management is an important part of a business system.Through reasonable allocation and control of permissions,the security of data and systems can be improved.On the one hand,by analyzing the advantages and disadvantages of three typical access control models,this paper designs and implements a management system based on RBAC model and role-based permission control.It is very necessary to design a role-based permission system with the help of databases,which is more secure,more flexible,and shows distributed management characteristics compared with other models.On the other hand,due to the dependence of software development and operation on external environment,it is very difficult to develop and operate software on different platforms.The container technology,notably Docker,has changed this situation and effectively reduced the deployment pressure.Based on the RBAC model,this paper designs and implements the access control system to improve the access management and improve the management level and efficiency.By deploying the system to the container,the pressure of platform development,deployment and operation and maintenance is reduced.
作者
雷惊鹏
LEI Jingpeng(School of Information Technology,Anhui Vocational College of Defense Technology,Lu’an Anhui 237011,China)
出处
《长沙大学学报》
2022年第5期15-23,共9页
Journal of Changsha University
基金
安徽省教育厅高校优秀青年骨干教师国内访问研修项目,编号:GXGNFX2021211
安徽省教育厅高校自然科学研究项目“私有云平台支撑的教育大数据分析挖掘技术研究”,编号:KJ2021A1495。
