Research on cross-platform unified resource access control management system

Abstract

Existing information systems often involve variety of application modules deployed on different platforms including cloud computing, mobile computing. The single sign-on (SSO) mechanism is usually exploited for user login and access control to achieve unified management and authorization. However, existing SSO can only control users' access to main coarse-grained resources of each application module. It is incapable of controlling authorized users' access to fine-grained data of specific application modules. This paper therefore introduced the cross-platform unified resource access control system (CURAC) based on URI of various resources, which includes resource-based authentication and data-based authentication mechanisms for controlling users' access to both coarse-grained resources like web pages or data tables and fine-grained data resources like column fields of a data table. Such resources are usually deployed on different platforms. Creative development and extensive deployment practices show that our cross-platform unified resource access control system (CURAC) can effectively control the access to various resources of application systems on different application platforms.