【会议论文】面向高并发和细粒度权限控制场景的层次化软件设计方法
于2021年08月05日在ITNLP会议中报告并即将发表于CCRIS论文集(EI检索)中。
Hierarchical Software Design Methodology for High Concurrency and Fine-Grained Permission Control Scenarios
Yuan Han†*
School of Computer and Software, Nanjing Vocational University of Industry Technology, hyyh0369@163.com
Qingqing Song†
School of electronic & information engineering, Suzhou University of Science and Technology, mclansky@163.com
Xinquan Huang
School of Computer and Software, Nanjing Vocational University of Industry Technology, niit_hxq@163.com
Jie Yin
School of Computer and Software, Nanjing Vocational University of Industry Technology, yinjie990824@163.com
Because complex software usually faces high concurrency and complex permission control scenarios, and there are problems with low code reuse rate and chaotic function module structure in the development process of its access control module, so providing software design methodology for such scenarios is helpful to improve software productivity and software quality play an important role.
This paper proposes a hierarchical software design methodology for the development of complex software under high concurrency and fine-grained permission control scenarios. The software design methodology divides the hierarchical structure according to the characteristics of the access control process, and provides support for fine-grained control and multi-level control of permissions. For high concurrency scenarios, a cache management layer is added to improve the efficiency of the access control process. According to the actual needs of software development, the specific levels in the software design methodology are divided. By decoupling the user status detection, user status verification and permission authentication in the access control process, the support of this software design methodology in different framework environments is guaranteed and the security risks caused by the high coupling between frameworks are reduced. Through a series of 0-500K concurrent test experiments, the performance data of different frameworks in the same scenario is obtained, which provides users with a reference when implementing the software design methodology proposed in this article, enable it to choose a framework for better performance depending on the scenario it faces.
CCS CONCEPTS • Security and privacy~Security services~Access control
Additional Keywords and Phrases: Software Design Methodology, High Concurrency, Fine-Grained, Access Control