(In the introduction, it is very important to build a powerful authority management system to ensure the security of the management information system. Permission management system is one of the most reusable modules in management information system. Any multi-user system inevitably involves the same permission requirements, which require management of security services such as entity identification, data confidentiality, data integrity, non repudiation and access control. Different systems need to have an independent authority management system. Each permission management system is for its own system's permission management requirements, and may be different in terms of data storage, permission access and permission control mechanism. It is very necessary to select consistent security management design thinking, standardized design and leading technical architecture system to build a universal, complete, safe, easy to manage, transplantable and extensible rights management system, so that the rights management system can truly become the core of authority control and play a major role in protecting system security. In recent years, roleBaseAccess (RBAC), as an ideal candidate for the access control model, has been widely studied and widely used in many systems for its flexibility, convenience and security. With a small number of users, the roleBaseAccess model can not only effectively manage information access, but also simplify the management procedures for data authorization and protection, and improve the security of data, However, with the increase of network usage business complexity and the continuous expansion of the scope of use, the number of users and people has increased rapidly, and the contact has become very complex? Personage management poses great challenges. An attractive management solution is to automatically assign users' characters based on rules. This automatic command process should be based on the properties that the user already has. This article discusses the design and implementation of a rights management system based on Role Based Policies AcceS/SControl (RBAC) model. The system is implemented based on J2EE architecture technology. It also comments on how to use the system to access and control permissions.
Design and Implementation of Permission Management System Based on User System.doc)