Hierarchical Software Design Methodology for High Concurrency and Fine-Grained Permission Control Scenarios

Because complex software usually faces high concurrency and complex permission control scenarios, and there are problems with low code reuse rate and chaotic function module structure in the development process of its access control module, so providing software design methodology for such scenarios is helpful to improve software productivity and software quality play an important role. This paper proposes a hierarchical software design methodology for the development of complex software under high concurrency and fine-grained permission control scenarios. The software design methodology divides the hierarchical structure according to the characteristics of the access control process, and provides support for fine-grained control and multi-level control of permissions. For high concurrency scenarios, a cache management layer is added to improve the efficiency of the access control process. According to the actual needs of software development, the specific levels in the software design methodology are divided. By decoupling the user status detection, user status verification and permission authentication in the access control process, the support of this software design methodology in different framework environments is guaranteed and the security risks caused by the high coupling between frameworks are reduced. Through a series of 0-500K concurrent test experiments, the performance data of different frameworks in the same scenario is obtained, which provides users with a reference when implementing the software design methodology proposed in this article, enable it to choose a framework for better performance depending on the scenario it faces.

[1]  Manfred Reichert,et al.  Object-Specific Role-Based Access Control , 2019, Int. J. Cooperative Inf. Syst..

[2]  R. Divya,et al.  Web Authentication Protocol Using Zero Knowledge Proof , 2011, Inf. Secur. J. A Glob. Perspect..

[3]  Song Zhi-gang Role Based Access Control in MIS , 2002 .

[4]  Ingrid Nunes,et al.  A Qualitative Study of Application-Level Caching , 2017, IEEE Transactions on Software Engineering.

[5]  Shareeful Islam,et al.  A Dynamic Access Control Model Using Authorising Workflow and Task-Role-Based Access Control , 2019, IEEE Access.