计算机应用与软件2024,Vol.41Issue(5):327-331,344,6.DOI:10.3969/j.issn.1000-386x.2024.05.047
基于JWT的EAST实验数据用户身份和服务权限认证
JWT BASED USER IDENTITY AND SERVICE AUTHORITY AUTHENTICATION FOR EAST EXPERIMENTAL DATA
摘要
Abstract
User identity and service authority authentication have become important means of identity verification and data access security.User identity authentication is implemented using dynamic token technology JWT.For the problems of JWT being lost and intercepted,the strategy of encrypted storage and decryption and the binding mechanism of IP and JWT are proposed.According to the EAST experimental data and the current status of users,user resources were divided into second-level users,and service resources were divided into third-level resources.Graph database Neo4j was used to store the authority relationship between users and resources,and a bitmap method was proposed to accelerate authority authentication.The experimental results show that the JWT based authentication method and its security strategy can effectively solve the problems of identity and permission authentication.Compared with the traditional relational database storing user permissions,the graph database Neo4j and the bitmap method can effectively improve the efficiency of authentication.关键词
身份认证/权限认/JWT/EAST/图数据库/位图法Key words
Identity authentication/Authority authentication/JWT/EAST/Graph database/Bitmap分类
信息技术与安全科学引用本文复制引用
申正阳,王枫,任环宇..基于JWT的EAST实验数据用户身份和服务权限认证[J].计算机应用与软件,2024,41(5):327-331,344,6.基金项目
国家磁约束核聚变能发展研究专项项目(2018YFE0302100). (2018YFE0302100)
