本文選題：內(nèi)容安全 + 權(quán)限管理��； 參考：《天津大學(xué)》2016年碩士論文

【摘要】：隨著傳統(tǒng)互聯(lián)網(wǎng),移動(dòng)互聯(lián)網(wǎng)的飛速發(fā)展,越來越多的公司暴露出了安全問題,安全問題的重要性也越來越大,但安全問題不僅限于網(wǎng)絡(luò)安全,內(nèi)容安全也也是很重要的一部分,因此設(shè)計(jì)一種合理的內(nèi)容安全權(quán)限管理系統(tǒng),有著非常重要的意義。內(nèi)容安全權(quán)限管理系統(tǒng),本質(zhì)上是對(duì)于有訪問限制要求并需要保證安全的內(nèi)容做權(quán)限存儲(chǔ),權(quán)限管理涉及到的功能包括:權(quán)限適配,權(quán)限的查詢,轉(zhuǎn)發(fā),撤銷,更新等功能。內(nèi)容安全系統(tǒng)必須能支持現(xiàn)有的管理制度,包括內(nèi)容分級(jí)管理、文件生命周期管理。能夠支持現(xiàn)有的應(yīng)用系統(tǒng),應(yīng)用內(nèi)部往往已經(jīng)包含了大量需要保護(hù)的內(nèi)容,內(nèi)容安全系統(tǒng)必須能支持既有應(yīng)用。部署內(nèi)容安全系統(tǒng)要和現(xiàn)有的應(yīng)用結(jié)合,不能對(duì)現(xiàn)有應(yīng)用造成嚴(yán)重影響,不能終止、改變現(xiàn)有應(yīng)用。目前本系統(tǒng)在國(guó)內(nèi)外都有相似的設(shè)計(jì)及架構(gòu),但不少會(huì)存在一些問題,比如權(quán)限的隔離性,安全性,節(jié)點(diǎn)間的交互性等方面。本課題旨在設(shè)計(jì)一種內(nèi)容安全權(quán)限管理系統(tǒng),能遵從如下設(shè)計(jì)原則:使用的便利性,在日常工作中用戶需要頻繁訪問內(nèi)容安全系統(tǒng),便利的授權(quán)管理手段將大大提高內(nèi)容安全系統(tǒng)的可用性。應(yīng)用的多變性,內(nèi)容安全系統(tǒng)在具體應(yīng)用中將呈現(xiàn)多樣性,在條件許可的情況下權(quán)限管理子系統(tǒng)能和應(yīng)用原有的權(quán)限管理系統(tǒng)進(jìn)行聯(lián)動(dòng)。未來的擴(kuò)展性,內(nèi)容安全系統(tǒng)未來必將發(fā)展成為企業(yè)內(nèi)部的關(guān)鍵應(yīng)用,權(quán)限管理子系統(tǒng)的擴(kuò)展性是系統(tǒng)發(fā)展的重要保障。實(shí)現(xiàn)重點(diǎn)如下,權(quán)限查詢及同步服務(wù),包括權(quán)限查詢,權(quán)限轉(zhuǎn)發(fā),權(quán)限同步,權(quán)限更新,權(quán)限緩存更新,權(quán)限撤銷;權(quán)限適配服務(wù),包括本地節(jié)點(diǎn)權(quán)限適配,垮節(jié)點(diǎn)權(quán)限適配;加解密服務(wù)。在權(quán)限隔離性,安全性,節(jié)點(diǎn)間的交互性,服務(wù)性能等方面做出優(yōu)化。
[Abstract]:With the rapid development of the traditional Internet and mobile Internet, more and more companies have exposed security problems, and the importance of security issues has become more and more important, but the security problems are not limited to network security. Content security is also an important part, so it is very important to design a reasonable content security privilege management system. Content security permission management system is essentially to have access restrictions and need to ensure the security of content to do the right storage, the rights management involved in the functions include: permission matching, permission query, forwarding, revocation, update and other functions. Content security systems must be able to support existing management systems, including content hierarchy management, file lifecycle management. In order to support the existing application system, the content security system must be able to support the existing application. The deployment of the content security system should be combined with the existing application, which can not seriously affect the existing application, can not terminate, and change the existing application. At present, the system has similar design and architecture at home and abroad, but there are some problems, such as the isolation of authority, security, interactivity between nodes and so on. The purpose of this paper is to design a content security authority management system, which can follow the following design principles: convenience of use and frequent access to content security system in daily work. Convenient authorization management means will greatly improve the availability of content security systems. The variability of application, the diversity of content security system in the concrete application, and the linkage between the privilege management subsystem and the original authority management system can be carried out under the condition that the condition permits. In the future, the extensibility of the content security system will become the key application in the enterprise, and the extensibility of the privilege management subsystem is the important guarantee for the development of the system. The key points are as follows: permission query and synchronization services, including permission query, permission forwarding, permission synchronization, permission update, permission cache update, permission revocation, permission adaptation service, including local node permission adaptation, collapsed node permission adaptation; Encryption and decryption services. It optimizes privilege isolation, security, interactivity between nodes, service performance and so on.
【學(xué)位授予單位】：天津大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2016
【分類號(hào)】：TP311.52

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 張軍強(qiáng);;基于ASP組件技術(shù)的WEB MIS權(quán)限系統(tǒng)的設(shè)計(jì)與實(shí)現(xiàn)[J];電子測(cè)試;2014年21期

2 楊勇軍;肖俊峰;肖群娥;;用電信息采集系統(tǒng)維護(hù)管理研究[J];中國(guó)電業(yè)(技術(shù)版);2012年06期

3 龍麗Y，

本文編號(hào)：2100924