Planning A Database Online Authorization System- A case study of C Company

• Main Authors: Kuo-Liang Wu, 吳國樑
• Other Authors: Cheng-Liang Yang
• Format: Others
• Language: zh-TW
• Published: 2008
• Online Access: http://ndltd.ncl.edu.tw/handle/80756138370435924774

碩士 === 大同大學 === 資訊經營學系(所) === 97 === Database is a storage unity, provides data keeping, which is an important and invisible property for business enterprises, and assists the members of the business enterprise to get data smoothly from the database though legal authorization, and then arrange and analyze it for getting useful information, furthermore to create more benefits which is one of the crucial tasks of the database administrators. Nowadays, the database management systems such like ORACLE, DB2 and MSSQL have already supplied quite good management interface for supporting the management of the accounts in database. By exploring the specified company as the case studied in this research, we found that there are many problems relevant to management and maintenance came out under the dispersed environment when the accounts in database increased till certain amount, for instance, the accounts in database are dispersed to different database servers, in this case, the centralized management can not be done efficiently. Moreover, the keeping of the accounts in database and passwords are possibly disclosed by the users’ careless manner. In this paper, through the problems of issuing the accounts manually faced by the database management system of the studied case, we raise the three-step corrective operation flow; these are Authorization Management, Application Receipt and System Deletion. For the purpose to complete the new operation flow, we develop the Web Service Modules; Trigger Modules, Delete Batch Modules, Automatic Report Modules and Get Information Batch Modules, to provide the operation for all the system. The relevant concepts and methodologies of reference literature to design the models are connecting the Single Sign On concept applied by the designed accounts in database and issuing password with the Active Directory Service of the cased company; the design of database authorization operation is made use of the concept of Role-Base Access Control. In addition, referring to the System Quality literature, we consider the reliability, stability, and reaction timing and operation easiness as the important factors of this design. The on Line Issuing System of the developed database is applied on the studied case, the previous database administrator reduces the involvement of manual operation, and the operation timing is much shorter than before. Additionally, resolving the problems of unable to centralize the management of the accounts in database or the account users leaking out the password without caution and so on.