èŠ‚ç‚¹æ–‡çŒ®

ç½‘ç»œæ•™å¦å¹³å°å®‰å…¨è®¤è¯ä½“ç³»çš„ç ”ç©¶

Study of Secure Authentication System for E-Leaning

åˆ†é¡µä¸‹è½½
åˆ†ç« ä¸‹è½½
æ•´æœ¬ä¸‹è½½
åœ¨çº¿é˜…è¯»
ä¸æ”¯æŒè¿…é›·ç‰ä¸‹è½½å·¥å…·ï¼Œè¯·å–æ¶ˆåŠ é€Ÿå·¥å…·åŽä¸‹è½½ã€‚

ã€ä½œè€…ã€‘ è¢å…ˆçï¼›

ã€ä½œè€…åŸºæœ¬ä¿¡æ¯ã€‘ æ¦æ±‰ç†å·¥å¤§å¦ ï¼Œ æœºæ¢°ç”µåå·¥ç¨‹ï¼Œ 2003ï¼Œ ç¡•å£«

ã€æ‘˜è¦ã€‘ æœ¬æ–‡è®ºè¿°äº†ç½‘ç»œæ•™å¦å¹³å°é¢ä¸´çš„å®‰å…¨é—®é¢˜å’Œç›®å‰å¸¸è§çš„å‡ ç§é‡è¦çš„å®‰å…¨æŠ€æœ¯ï¼Œå¹¶é’ˆå¯¹éšç€åœ¨æ ¡å›ç½‘ä¸æä¾›çš„ç½‘ç»œæ•™å¦å’Œå…¶å®ƒåº”ç”¨æœåŠ¡è¶Šæ¥è¶Šå¤šï¼Œç»™ç”¨æˆ·ç®¡ç†å’Œæ“ä½œå¸¦æ¥è®¸å¤šä¸ä¾¿è¿™ä¸€çŽ°çŠ¶ï¼Œæå‡ºäº†åŸºäºŽæ•°å—åŒ–æ ¡å›çš„ç»Ÿä¸€ç”µåèº«ä»½è®¤è¯ç³»ç»Ÿè§£å†³æ–¹æ¡ˆã€‚è¯¥ç³»ç»Ÿä¸ç”¨æˆ·ä½¿ç”¨æ ¡å›ç½‘ä¸çš„æ‰€æœ‰æœåŠ¡åªéœ€ä¸€å¥—å£ä»¤å’Œå¯†ç ï¼Œå¦å¤–ï¼Œè¯¥ç³»ç»Ÿè¿˜å®žçŽ°å¯¹é‡è¦èµ„æºçš„æŽˆæƒè®¿é—®ã€‚æ–¹æ¡ˆå®žçŽ°çš„æ ¸å¿ƒæŠ€æœ¯æ˜¯åŸºäºŽLDAPçš„ç›®å½•æœåŠ¡æŠ€æœ¯ã€‚ ç³»ç»Ÿé‡‡ç”¨Ciscoå…¬å¸çš„å®‰å…¨è®¿é—®æŽ§åˆ¶å™¨Cisco Secure ACS (Access Control Server) 2.6ä½œä¸ºè®¤è¯æœåŠ¡å™¨ï¼ŒiPlanet Directory Server5.1ä½œä¸ºç›®å½•æœåŠ¡å™¨ï¼Œä»¥åŠå®žè¾¾çš„åŸºäºŽ802.1xçš„äº¤æ¢æœºSTAR-S1924Fä½œä¸ºç”¨æˆ·æŽ¥å…¥è®¾å¤‡å³è®¤è¯å®¢æˆ·ç«¯ï¼Œå®žçŽ°ç”¨æˆ·åœ¨æ‰€æœ‰åº”ç”¨çš„è´¦å·ä¸Žå¯†ç ç‰ç›¸å¯¹å›ºå®šçš„ä¿¡æ¯é›†ä¸ç®¡ç†å’ŒåŸºäºŽè§’è‰²çš„è®¿é—®æŽ§åˆ¶ã€‚æœ¬æ–‡è¯¦ç»†è®²è¿°äº†ç½‘ç»œæ•™å¦å®‰å…¨è®¤è¯ä½“ç³»çš„æŠ€æœ¯æž¶æž„å’Œå®žçŽ°åŸºç†ä»¥åŠéƒ¨åˆ†è®¤è¯æœåŠ¡å™¨çš„é…ç½®å‚æ•°ã€‚ å¦å¤–ï¼Œæ–‡ä¸å™è¿°äº†ç›®å½•æœåŠ¡äºŒæ¬¡å¼€å‘çš„å®žçŽ°è¿‡ç¨‹ï¼Œé‡‡ç”¨Netscape Directory JAVA SDKå¼€å‘åŒ…ï¼ŒJSPå’ŒJavaBeansæŠ€æœ¯æ¥å¼€å‘åŸºäºŽWEBçš„ç›®å½•æœåŠ¡å®¢æˆ·ç«¯ï¼Œä½¿ç›®å½•æœåŠ¡ä¸çš„æ•°æ®èƒ½æ›´æ–¹ä¾¿æ›´å®‰å…¨çš„è¢«è®¿é—®å’Œç®¡ç†ã€‚ç”¨æˆ·ç®¡ç†é‡‡ç”¨åŸºäºŽè§’è‰²çš„åˆ†çº§ç®¡ç†æ¨¡å¼ã€‚å°†ç”¨æˆ·ä¸»è¦åˆ†ä¸ºåŒ¿åç”¨æˆ·ã€å¦ç”Ÿã€æ•™å¸ˆå’Œç®¡ç†å‘˜å››ç§ç±»åž‹ï¼Œé€šè¿‡å¯¹å…¶åˆ†åˆ«è®¾ç½®è®¿é—®æŽ§åˆ¶æƒé™æ¥å®žçŽ°å®‰å…¨è®¿é—®å’Œç®¡ç†ã€‚åŸºäºŽWEBçš„ç›®å½•æœåŠ¡å®¢æˆ·ç«¯å®žçŽ°çš„å…·ä½“åŠŸèƒ½æœ‰ï¼šåˆ†ç±»æŸ¥è¯¢ã€ä¿®æ”¹å¯†ç ã€æ¡ç›®çš„æ·»åŠ ã€åˆ é™¤ã€ä¿®æ”¹ã€è®¾ç½®ç»„ã€è®¾ç½®è§’è‰²å’Œè®¾ç½®è®¿é—®æŽ§åˆ¶ç‰ï¼Œå‰å°é¡µé¢ä½¿ç”¨äº†æ ‘åž‹ç»“æž„ï¼Œç›´è§‚çš„åæ˜ äº†ç›®å½•æœåŠ¡å™¨ä¸æ•°æ®çš„æ‹“æ‰‘ç»“æž„ã€‚ ä¸Šè¿°ç»Ÿä¸€ç”µåèº«ä»½è®¤è¯ç³»ç»Ÿä½¿ç”¨çš„æ ¸å¿ƒæŠ€æœ¯æ˜¯åŸºäºŽLDAPçš„ç›®å½•æœåŠ¡æ¥å®žçŽ°ï¼Œå› æ¤ä½¿è®¤è¯å’Œç®¡ç†å˜å¾—å¯é ã€ä¾¿æ·ï¼Œå¹¶ä¸”åœ¨å›½å†…å¤–ç”µåå•†åŠ¡å¹³å°ä¸å·²å¾—åˆ°å¹¿æ³›åº”ç”¨ï¼Œè¯¥æŠ€æœ¯å¯¹æ•™å¦å¹³å°ä¹ŸåŒæ ·é€‚ç”¨ã€‚ä½†æ˜¯åŸºäºŽç›®å½•æœåŠ¡å¼€å‘WEBåº”ç”¨åœ¨å›½å†…è¿˜å¾ˆå°‘è§ï¼Œè€Œè¿™æ£æ˜¯è¯¾é¢˜æœ€ä¸»è¦çš„å·¥ä½œï¼Œæœ¬æ–‡å¯¹ç›®å½•æœåŠ¡æ€»ç»“çš„é˜¶æ®µæˆæžœå¯¹å°†æ¥è¿›ä¸€æ¥çš„å¼€å‘å¯ä»¥èµ·åˆ°ä¸€å®šçš„å‚è€ƒå’Œå€Ÿé‰´ä½œç”¨ã€‚æ›´å¤š è¿˜åŽŸ

ã€Abstractã€‘ In this paper, we discuss problems of security for the E-learning system and some main security technology, and put forward universal user ID authentication based on digital school network according to the present situation that inconvenient to user management and operation brings by more and more application server provided .The core technology is directory server based on LDAP. This article tells about the technical support, principle of the E-leaning secure authentication and the parameter in configuration of authentication server.The system adopts Cisco Secure ACS (Access Control Server) 2.6 of Cisco company as the authentication server, iPlanet Directory Servers. 1 as the directory server and STAR-S1924F switch based on 802.1x as the authentication client namely user network access device to implement centralize management of the user account and password and so on in all the application, and the authorization access based on port.In addition, process of developing the client of directory server is discussed in this paper. Netscape Directory JAVA SDK, the technology of JSP and JavaBeans are used to implement the client based on WEB which made data in the directory server is more easier and secure to be managed and accessed. The users are managed based on roles and grades, the types of users are: anonym, student, teacher and administrator, implement secure management by setting access control privilege specially. Tree view is used in the web interface made the directory data looks more understandable. The function that implement are search entry, edit entry, delete entry, set group, set role, set access control and so on.The directory server technology based on LDAP, used in the solving scheme of universal user-ID system which makes the authentication and management more credibility, more convenient. This technology is applied broadly on E-Commerce system in foreign country and nation, and this technology is same to apply on E-Leaning system. In addition, the work of development WEB application based on directory is a little in nation. However, this is the main task of this topic. The stage production discussed in this topic will take some reference to the people who do more development on directory server in the future.æ›´å¤š è¿˜åŽŸ

ã€å…³é”®è¯ã€‘ LDAPï¼› AAAï¼› ç›®å½•æœåŠ¡ï¼› å®‰å…¨è®¤è¯ï¼› è®¿é—®æŽ§åˆ¶ï¼›
ã€Key wordsã€‘ LDAPï¼› Directory Serverï¼› AAAï¼› Authenticationï¼› Access Controlï¼›

ã€ç½‘ç»œå‡ºç‰ˆæŠ•ç¨¿äººã€‘ æ¦æ±‰ç†å·¥å¤§å¦

ã€åˆ†ç±»å·ã€‘G434
ã€è¢«å¼•é¢‘æ¬¡ã€‘1
ã€ä¸‹è½½é¢‘æ¬¡ã€‘183

çŸ¥ç½‘èŠ‚ä¸‹è½½

èŠ‚ç‚¹æ–‡çŒ®ä¸ï¼š

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

æœ¬æ–‡çš„å¼•æ–‡ç½‘ç»œ

èŠ‚ç‚¹æ–‡çŒ®

èŠ‚ç‚¹æ–‡çŒ®

ç½‘ç»œæ•™å­¦å¹³å°å®‰å…¨è®¤è¯ä½“ç³»çš„ç ”ç©¶

Study of Secure Authentication System for E-Leaning

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

ç½‘ç»œæ•™å¦å¹³å°å®‰å…¨è®¤è¯ä½“ç³»çš„ç ”ç©¶