Javen-Studio 咖啡小屋

http://javenstudio.org - C++ Java 分布式 搜索引擎
Naven's Research Laboratory - Thinking of Life, Imagination of Future

  C++博客 :: 首页 :: 新随笔 :: 联系 :: 聚合  :: 管理 ::
  24 随笔 :: 57 文章 :: 170 评论 :: 4 Trackbacks
Enterprise Library 4.1 - October 2008
Design of the Security Application Block

The Security Application Block addresses the following areas:

  • Authorization
  • Security-related caching

The application block is designed to achieve the following goals:

  • Provide a simple and intuitive interface to the commonly required authorization functionality.
  • Encapsulate the logic used to perform authorization and security-related caching.
  • Present a standard provider model for authorization and security-related caching.
  • Ensure that the application block is extensible.
  • Ensure that there is minimal or negligible performance impact compared to security code that access the .NET Framework classes directly to accomplish the same functionality.
  • Incorporate best practices for application security, as described in Improving Web Application Security: Threats and Countermeasures.

The Security Application Block is designed to externalize the implementation of the authorization and caching provider from a running application. This design lets you change implementations without changing the code of the application. Figure 1 illustrates the interrelationship between the key classes in the Security Application Block.


Figure 1
Design of the Security Application Block

posted on 2008-12-26 17:21 Javen-Studio 阅读(323) 评论(0)  编辑 收藏 引用

网站导航: 博客园   IT新闻   BlogJava   知识库   博问   管理