本文已被:浏览 1929次 下载 5175次
Received:February 03, 2010 Revised:March 15, 2010
Received:February 03, 2010 Revised:March 15, 2010
中文摘要: 单点登录是解决网络环境下门户系统安全认证的一种有效策略。在分析Central Authentication Service (CAS)的体系结构、认证流程的基础上,对CAS进行了扩展,把粗粒度的角色权限管理机制引入到CAS中,提出了粗粒度、松耦合的基于角色权限管理的CAS。使CAS不仅能快速完成统一身份认证,而且还具有权限控制功能,从而提高了整个系统的可用性与安全性。
Abstract:Single Sign-On (SSO) is an efficient and secure authentication solution for portal system. This paper analyses the architecture and authentication process of CAS. By extending the CAS, a mechanism of coarse-grained Role Based Access Control is added to CAS. This paper proposes a new model of CAS, which has a coarse-grained and loosely-coupled Role Based Access Control. The extended CAS cannot be used for authentication, but can also be used for authorization, which increases availability and heighters the security of the system.
文章编号: 中图分类号: 文献标志码:
基金项目:国家自然科学基金(60873081,60970095,M0921005);湖南省自然科学基金(07JJ6122)
| Author Name | Affiliation |
| HUANG Yong-Sheng | 中南大学 信息科学与工程学院 湖南 长沙 410083 |
| ZHANG Zu-Ping | |
| LONG Jun |
| Author Name | Affiliation |
| HUANG Yong-Sheng | 中南大学 信息科学与工程学院 湖南 长沙 410083 |
| ZHANG Zu-Ping | |
| LONG Jun |
引用文本:
黄永生,张祖平,龙军.开源单点登录与角色权限管理的融合研究应用.计算机系统应用,2010,19(10):108-111
HUANG Yong-Sheng,ZHANG Zu-Ping,LONG Jun.Fusion of Open Source and Role Based Access Control.COMPUTER SYSTEMS APPLICATIONS,2010,19(10):108-111
黄永生,张祖平,龙军.开源单点登录与角色权限管理的融合研究应用.计算机系统应用,2010,19(10):108-111
HUANG Yong-Sheng,ZHANG Zu-Ping,LONG Jun.Fusion of Open Source and Role Based Access Control.COMPUTER SYSTEMS APPLICATIONS,2010,19(10):108-111
